Ars Technica

HTTPS Certificate Revocation is broken, and it’s time for some new tools

This article was originally published on Scott Helme's blog and is reprinted here with his permission. We have a little problem on the web right now and I can only see it becoming a larger concern as ...
Threat Post

OpenSSL Patches High-Severity OCSP Bug, Mitigates SWEET32 Attack

OpenSSL patched a high-severity vulnerability in its deployment on the Online Certificate Status Protocol, and also mitigated the SWEET32 attack. A vulnerability in the OpenSSL implementation of the ...
PC World

The Decision to Strip Online Certificate Revocation Checks From Chrome Is Misguided ...

Stripping OCSP (Online Certificate Status Protocol) and CRL (certificate revocation list) checks from Google Chrome could have dangerous implications because it will turn Google into a single point of ...
EDN

Entrust SSL Certificates Are Faster — OCSP Leverages Akamai to Accelerate Website ...

“The online channel is a global environment, and it is critical that users across the world experience a consistent, trusted and fast browser experience — regardless of geographic location,” said ...