On 10/24/2013 08:01 PM, From Kathleen Wilson:
For EV certs Firefox has always checked the CRL when the OCSP AIA URI
was not provided. EV treatment would not be given if current
revocation information was not obtained.
If Firefox really uses the CRLDP, then I suggest to keep that option
Kathleen Wilson wrote:
In the case of EV certs, Mozilla is still checking the CRL when the OCSP URI
is not provided.
Which CRL? Where does it come from?
Though, I believe the plan is to stop checking CRL in the
future...
https://bugzilla.mozilla.org/show_bug.cgi?id=585122#c34
Instead of
On Thu, October 24, 2013 2:47 pm, Michael Ströder wrote:
Kathleen Wilson wrote:
In the case of EV certs, Mozilla is still checking the CRL when the OCSP
URI
is not provided.
Which CRL? Where does it come from?
Though, I believe the plan is to stop checking CRL in the
future...
3 matches
Mail list logo
