Miért

működésképtelen
a tanúsítvány visszavonási rendszer
?

Pfeiffer Szilárd
Balasys

Revocation Check

  • Certificate Revocation List

  • Online Certificate Status Protocol

    • Responders

    • Stapling

  • Certificate validity period

Revocation Check

Location

CRL

Access

Size

OCSP

Privacy

OCSP Stapling

Full Chain

OCSP Multi Stapling

?

Support

Hack proof

OCSP Stapling

TLS 1.3

  • Key Exchange

  • Authentication
  • Bulk Cipher
  • Hash Algorithm
  • Session Resumption

  • Performance

  • Support

  • Revocation Check

Tools

  • Online checkers

  • Offline checkers

  • TLS offloaders

Online Checkers

Online Checkers

Offline Checkers

Offline Checkers

TLS offloaders

Questions?