Online certification status protocol
With OCSP, when a site wants to verify the revocation status of a certificate, it sends a request to the CA about the status of the certificate. The CA then responds, confirming the validity (or revocation) of the certificate.
Because not all CAs provide responses, CRLs can provide information about the status of more certificates.
Content Gateway enables you to cache OCSP responses about the revocation state of a certificate. Caching responses may be useful in environments with high amounts of SSL traffic and where saving bandwidth is important.
Use the
tab to configure how Content Gateway keeps revocation information current.