Categories:
Android (13)
Apple Mac (27)
DH Keys (39)
DSA Keys (83)
EC Keys (2458)
Firefox (30)
General (10)
Google Chrome (25)
Intermediate CA (152)
Java VM (29)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (21)
OpenSSL (236)
Other (7)
Portecle (38)
Publishers (6617)
Revoked Certificates (16)
Root CA (85)
RSA Keys (5331)
Tools (46)
Tutorial (1)
What Is (22)
Windows (127)
Collections:
Other Resources:
What Is OCSP (Online Certificate Status Protocol)
What is OCSP (Online Certificate Status Protocol)?
✍: FYIcenter.com
OCSP (Online Certificate Status Protocol) is an Internet protocol that allows client systems to communicate with the CA (Certificate Authority) of an X.509 digital certificate to verify the status of the certificate.
When a client system receives an X.509 digital certificate from a server, the client system should first make sure the certificate has not been revoked by the CA.
This can be done by sending an OCSP request to CA's OCSP server. The request contains the certificate's identification. The CA's OCSP server will return the current revocation status of the certificate. If the status says revoked, the certificate should be rejected.
Here is a diagram showing how a client system receives a server certificate
and verifies its status using OCSP (source: venafi.com).
Â
⇒ Find OCSP Server URL of Certificate CA
⇠OCSP (Online Certificate Status Protocol)
2016-08-16, 7421👍, 0💬
Popular Posts:
Certificate Summary: Subject: mail.qq.com Issuer: GeoTrust SSL CA Expiration: 2014-03-29 10:17:20 UT...
How to import a root CA certificate into Google Chrome? I delete it from earlier, but I have a copy ...
Certificate Summary: Subject: www.alipay.com Issuer: VeriSign Class 3 International Server CA - G3 E...
Certificate Summary: Subject: TC TrustCenter Class 4 CA II Issuer: TC TrustCenter Class 4 CA II Expi...
Certificate Summary: Subject: America Online Root Certification Authority 1 Issuer: America Online R...