Google Chrome will no longer check for revoked SSL certificates online
Source: Network World - Posted by Anthony Pell   
Vendors/Products Google plans to remove online certificate revocation checks from future versions of Chrome, because it considers the process inefficient and slow. Browsers currently check if a website's SSL certificate has been revoked by its issuing Certificate Authority (CA) when trying to establish an HTTPS connection. These checks are done by querying CA-operated servers through a special protocol known as OCSP (Online Certificate Status Protocol).

The problem is that browsers can't always communicate with the validation servers because of various technical problems and when something like this happens, the HTTPS connections should not be established; at least in theory.

Read this full article at Network World

Only registered users can write comments.
Please login or register.

Powered by AkoComment!