Nelson Bolyard wrote: > OCSP stapling allows a TLS server to send a copy of a recent OCSP > response (issued by the issuer of that server's cert) along with the > cert in the TLS handshake, thereby saving the client extra connections > and extra round trips. It reduces load on OCSP responders.
Ah, ok. So the SSL-enabled server asks the OCSP responder of the server cert issuer. Hmm, let's see if this will ever be widely used. I have some doubts... Ciao, Michael. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
