In Reply to Parent Post by Randy
About 10-15 years ago remember we all talked about this in jest righ here?
Infrequently, but yes. I think Sidney has been a proponent for the need for a database of legitimate certificates along the lines of the SAE's OASIS database in aerospace's AS9100. It can be a lot of work to verify whether someone with a decent printer just printed up their own "certificate" or not.
We did have a recent discussion thread here on an AS9100 certificate from what I think was from a "certificate mill" which is a bit different, but along the same lines.
I just did the Google on "fake iso 9001 certificates" and there are articles going back years. It's not, as I think most people here know, a new problem by any means, nor is the UAE the only country it is a problem in.
I know years ago I would tell clients that though more expensive than many smaller registrars, companies like DNV, UL, BSI and several other biggies were "better" because 1. the validity of a company's certificate was easy to verify, and 2. the companies were trustworthy, known entities.
I think DNV, BSI and several others have online databases for certificates they issue.
I have no idea how big the problem really is, but I suspect it's pretty big.
I do come back to my opinion that companies should be using many aspects other than an ISO 9001 certificate to qualify their suppliers.