OCSP

OCSP overcomes the chief limitation of CRL: the fact that updates must be frequently dowloaded to keep the list current at the client end. When a user attempts to access a server, OCSP sends a request for certificate status information. The server sends back a response of "current", "expired," or "unknown." The protocol specifies the syntax for communication between the server (which contains the certificate status) and the client application (which is informed of that status). OCSP allows users with expired certificates a grace period, so they can access servers for a limited time before renewing.

Read more about OCSP: - Baltimore Technologies explains OCSP and its advantages and disadvantages. - Computer Associates offers a distributed OCSP responder. - Verisign's Wireless Validation Services use OCSP. - SearchSecurity.com provides links to information about "Securing the Internet and E-Commerce."

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Ixia network security tool exposes problems IxDefend from Ixia addresses network device and application flaws by fuzzing them to expose flaws and trigger problems. Product Review: Deepdive's DD300 Deepdive's DD300 appliance helps you identify and discover data on your network. Security services: Fiberlink's MaaS360 Mobility Platform The MaaS360 Mobility Platform service handles remote device updates, such as OS patches.

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary managed security services  (SearchSecurity.com) trusted computing base  (SearchSecurity.com)