pkix-3----Page:5
1 2 3 4 5 6 7 8 9 10
|
What about the Responder? How does the requestor know which hash functions and signature algorithms are supported by the OCSP Responder? Three options: Add optional query / response Requestor can ask, and then cache the answer OCSP Responder Certificate Similar to SMIMECapabilities extension Assume Requestor configuration Fine for some deployments, but not others |