Skip to main content
Table of contents

Private key leak

If any of the private keys securing your connection to GOV.UK Verify have been compromised, you are having a security incident. In addition to following your organisation’s procedure, you must:

You must stop using the compromised keys as soon as possible. The quickest way to do this is by rotating your keys and certificates using the GOV.UK Verify Manage certificates service.

This page was last reviewed on 7 January 2020. It needs to be reviewed again on 7 June 2020 by the page owner #verify-developers .
This page was set to be reviewed before 7 June 2020 by the page owner #verify-developers. This might mean the content is out of date.