Chapter 8. Certificate Revocation
As discussed in Chapter 6, "Certificates and Certification," certificates are used to bind an identity with their corresponding public key. Normally, this binding is valid for the full lifetime of the issued certificate. However, there are circumstances when an issued certificate should no longer be considered valid, even when the certificate has not yet expired. Reasons for revocation vary, but they may involve anything from a change in job status to a suspected private key compromise. Therefore, an efficient and reliable method must be provided to revoke a public key certificate before it might naturally expire.
Note that the frequency with which revocation information is updated and posted is an extremely ...
Get Understanding Public-Key Infrastructure: Concepts, Standards, and Deployment Considerations now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
