Hashim Saleem wrote:
I am facing problem in adding Nonce to the OCSP Request. I searched through the header files as well as source files (i.e. ocsp*.h, ocsp.c) but I am unable to find any help in implementing Nonce.
There is no support for OCSP nonces in NSS. Limiting the age of acceptable OCSP responses is now considered preferable to nonces to avoid replay attacks. Note that this approach (age limiting) is also done for CRLs.
-- Nelson B _______________________________________________ mozilla-crypto mailing list mozilla-crypto@mozilla.org http://mail.mozilla.org/listinfo/mozilla-crypto