OCSP stands for Online Certificate Status Protocol and is used by Certificate Authorities to check the revocation status of an X.509 digital certificate.
In this blog, we discuss certificate transparency and how it can help quickly detect fraudulent certificates.
SSL trust issues
India's National Informatics Centre (NIC) has joined the infamous Dutch CA DigiNotar in issuing fake and unauthorised digital certificates. Yet again, this activity damages the faith we place in Certification Authorities (CAs) to provide high-trust identity assurance.
Certificate whitelist checking is a must. Usage of PKI-based digital certificates has become a widely accepted means of electronic identity authentication for all kinds of purposes, from logical and physical access control to document signing, server authentication for ecommerce sites and software code authentication.