-
### what we have atm
- CRLite: mode 2, so we trust all CRLite reponses (revoked and not-revoked).
- OCSP:
- used when CRLite cannot provide an answer;
- stapled if possible;
- hard-fail.
…
-
Thanks Bill to share such a wonderful code.
As we go through OCSPServer.php & noticed that it directly works with CA certificate to sign the OCSP response, but, we have to provide **CA's private key*…
-
Please implement [OCSP Stapling](http://en.wikipedia.org/wiki/OCSP_stapling).
This is especially useful to 1. reduce load of OCSP servers and 2. prevent privacy leaks of who is connecting to your host…
-
Add support for OCSP.
https://en.wikipedia.org/wiki/Online_Certificate_Status_Protocol
-
Hi SwiftNIO folks!
One thing I have been thinking about as we plan out rewriting [mongo-swift-driver](https://github.com/mongodb/mongo-swift-driver)'s internals in Swift based on NIO is TLS and sp…
-
##### ISSUE TYPE
- Feature Idea
##### SUMMARY
Include the ability to check CRL and OCSP for integrations associated to AWX/Tower. For example, validate based on CRL when connecting to log aggr…
-
After https://github.com/rustls/rustls-platform-verifier/pull/50 lands we should be able to enable the stapled OCSP test in the real world verification test suite: https://github.com/rustls/rustls-pla…
-
**Is your feature request related to a problem? Please describe.**
Cert-manager is capable of making OCSP request and validating certificate based on acquired OCSP resposne.
This response could be s…
-
The content in BR § 4.9.10 belongs in BR § 4.9.9, and BR § 4.9.10 should say “No stipulation.”
According to my reading of [RFC 3647](https://datatracker.ietf.org/doc/html/rfc3647#section-4.4.9), …
-
### Description
apisix support ocsp stapling or not. and is support crl list?