Hi, When we use the android API's to connect to a website using HTTPS. Are the certificates automatically checked for revocation via OCSP/ CRL? Or are the certificates simply validated offline with the installed root CA?
On a related note, does the browser support OCSP/CRL? Thanks -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
