OCSP

OCSP overcomes the chief limitation of CRL: the fact that updates must be frequently dowloaded to keep the list current at the client end. When a user attempts to access a server, OCSP sends a request for certificate status information. The server sends back a response of "current", "expired," or "unknown." The protocol specifies the syntax for communication between the server (which contains the certificate status) and the client application (which is informed of that status). OCSP allows users with expired certificates a grace period, so they can access servers for a limited time before renewing.

Learn more about Network Device Management

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

More resources from around the web: - Baltimore Technologies explains OCSP and its advantages and disadvantages. - Computer Associates offers a distributed OCSP responder. - Verisign's Wireless Validation Services use OCSP.

FILE EXTENSION AND FILE FORMAT LIST File Extension and File Format List: A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #

RELATED CONTENT Researchers find thousands of flawed embedded devices Columbia University researchers found thousands of devices, from home routers to video conferencing units at risk. They say their research has... Is there a way to block iPhone widgets that bypass Web filters? If students are using your Wi-Fi to reach unapproved websites, you have the ability to take greater control of your network. Michael Cobb reviews the... Will an application usage policy best control network bandwidth? When it comes to speeding up the network, what works best: policy or technology? Both are important and should be used together, says expert Michael...

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary trusted computing base  (SearchSecurity.com)