Ars Technica

CAPI: Certificate validation against CRL

Helo everyone,<br><br>I'm trying to validate a certificate against a certificate revocation list published online using CAPICOM.<br><br>The certificate does contain a valid source for CRL (2.5.29.31, ...
ZDNet

Chrome does certificate revocation better

Everyone's talking about it: The Great Certificate Revocation Storm of 2014. Because of the Heartbleed bug, a very large number of SSL/TLS web sites need to revoke and reissue their certificates. The ...
Dark Reading

Solving The SSL Certificate-Revocation Checking Shortfall

RSA CONFERENCE 2012 -- San Francisco, Calif. -- The way that browsers perform SSL certificate-revocation checking is so fundamentally flawed that some browser vendors have turned it off altogether, ...
InfoWorld

Symantec: Stripping online certificate revocation checks from Chrome is misguided

Stripping OCSP (Online Certificate Status Protocol) and CRL (certificate revocation list) checks from Google Chrome could have dangerous implications because it will turn Google into a single point of ...
ZDNet

Mozilla posts plan for certificate revocation checking

2014 seems to be the year of the great certificate revocation debate. Revocation was always a sore subject with cryptoheads, but the noise level on the issue shot up to 11 this spring with the news of ...
PC World

The Decision to Strip Online Certificate Revocation Checks From Chrome Is Misguided, Symantec Says

Stripping OCSP (Online Certificate Status Protocol) and CRL (certificate revocation list) checks from Google Chrome could have dangerous implications because it will turn Google into a single point of ...