Articles tagged as “revocation”

Articles I've written

Check TLS certificate revocation with SSL Labs, crt.sh and OpenSSL

March 7, 2020

HTTPS, TLS, certificates, revocation, OCSP, SSL Labs, OpenSSL, crt.sh

Browsers mostly don't check whether a HTTPS certificate has been revoked so maybe you'd like to do it manually. There are a few ways how to query an Online Certificate Status Protocol (OCSP) server so let's see some of them. You'll need a browser (and the openssl tool).

February 21, 2020 (updated September 2, 2020)

HTTPS, TLS, certificates, padlock, revocation, Apple, Chrome, Firefox

In February 2020 at the CA/Browser Forum in Bratislava, Slovakia (and later officially), Apple has announced that starting September 1st, 2020, maximum TLS certificate lifetime in Safari (and probably in the whole macOS and iOS and all apps) will be just 1 year, 398 days exactly. Apple's change has been followed by both Chrome and Mozilla later that year. That's very good news. But why?

(read more…)

All articles