OCSP Stapling


OCSP Stapling, formally known as the TLS Certificate Status Request extension, is an alternative approach to the Online Certificate Status Protocol (OCSP) for checking the revocation status of X.509 digital certificates.

OCSP Stapling allows the presenter of a certificate to bear the resource cost involved in providing Online Certificate Status Protocol responses by appending ("stapling") a time-stamped OCSP response signed by the Certificate Authority to the initial TLS Handshake, eliminating the need for clients to contact the Certificate Authority.

More Information#

There might be more information for this subject on one of the following: