An organization needs to check the status of a certificate to see if it has been revoked. They only want to check the status of this one certificate. What should they use to do this most efficiently?
The Online certificate status protocol (OCSP) is an internet protocol where the revocation status of certificates can be obtained. OCSP allows for the revocation status of a single certificate to be obtained while the certificate revocation list (CRL) will only return a list of revoked certificates. Due to this a CRL can be quite large and difficult to digest.
Learn More
AI Generated Content may display inaccurate information, always double-check anything important.
What is OCSP and how does it work?
What are CRLs and their limitations?
What role does a RA play in certificate management?