Chapter 7. Working with Certificate Revocation Lists

IN THIS CHAPTER

  • Verifying Certificates Against a CA

  • Building and Maintaining a Certificate Revocation List

  • Managing a Certificate Revocation List

When you receive a certificate from someone or retrieve it from a directory, you can verify its signature by using the Certificate Authority's certificate, and you can verify that the certificate hasn't expired, but how do you verify that the certificate hasn't been revoked? The only thing you can do is go to the CA and check against its list of revoked certificates.

You can go about this task in a couple of ways. The first is to use another COM object that is available for use with Certificate Authorities running Microsoft's Certificate Server. ...

Get Developing Secure Applications with Visual Basic now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.