[cabfpub] Notes of meeting, CA/Browser Forum, Gjøvik, Norway, 26-28 June 2012

y-iida at secom.co.jp y-iida at secom.co.jp
Fri Jul 6 06:04:11 UTC 2012

Does it mean that OCSP responder implementations which:
  1. read (only) CRL
  2. check whether requested serial is in there
  3. if there is, respond "Revoked"
  4. if not, respond "Good"
are not allowed?

>Notes of meeting
>CA/Browser Forum
>Gj=F8vik, Norway
>26-28 June 2012
>8. BR Issues list.
>It was decided to disallow the "Good" response in the case where the
>OCSP responder for a particular CA does not know if that CA issued
>the certificate.

More information about the Public mailing list