OCSP

OCSP overcomes the chief limitation of CRL: the fact that updates must be frequently dowloaded to keep the list current at the client end. When a user attempts to access a server, OCSP sends a request for certificate status information. The server sends back a response of "current", "expired," or "unknown." The protocol specifies the syntax for communication between the server (which contains the certificate status) and the client application (which is informed of that status). OCSP allows users with expired certificates a grace period, so they can access servers for a limited time before renewing.

Read more about OCSP: - Baltimore Technologies explains OCSP and its advantages and disadvantages. - Computer Associates offers a distributed OCSP responder. - Verisign's Wireless Validation Services use OCSP. - SearchSecurity.com provides links to information about "Securing the Internet and E-Commerce."

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

BROWSE BY TAG Network Security: Tools, Products, Software,   Network Device Management,   Enterprise Network Security,   VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Firewall rule management best practices Michael Cobb offers best practices that can allow you to make changes to your company's firewall rule set without losing any sleep. What are best practices for fiber optic cable security? Mike Chapple compares the security of fiber optic cables to copper ones. Enterprise UTM security: The best threat management solution? Unified threat management technology is touted as the cure-all for enterprise network security. But is UTM the best product for keeping threats at...

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary trusted computing base  (SearchSecurity.com)