-
Type: Improvement
-
Resolution: Fixed
-
Priority: Major - P3
-
Affects Version/s: None
-
Component/s: None
-
None
-
Fully Compatible
Following instructions in https://ruby-doc.org/stdlib-2.7.1/libdoc/openssl/rdoc/OpenSSL/OCSP.html
Obtain server certificate
Create OCSP request
Identify responder URIs
Send OCSP requests to responders in parallel with a 5 second timeout
Verify OCSP response signature using the CA cert
Handle OCSP response redirects
Check OCSP response success/failure, raise ServerCertificateRevoked exception on failure
Test against atlas
- links to
(1 links to)