nanog mailing list archives
CAs with dual stacked CRL/OCSP servers
From: Rob Seastrom <rs () seastrom com>
Date: Fri, 05 Dec 2014 07:06:33 -0500
At $DAYJOB, we have some applications that we would like to be all hipster and *actually check* for certificate revocation. I know this is way out there in terms of trendiness and may offend some folks. Difficulty: the clients are running on single stacked IPv6. We have recently been advised by our existing CA that they "do not currently have IPv6 support plan" (sic). OCSP Stapling sounds like it could be a winner here. Unfortunately, the software support is not quite ready yet on the platform on either end of the connection (client or server). So... we're looking around for a vendor that's taken the time to dual stack its servers. Any leads? -r
Current thread:
- CAs with dual stacked CRL/OCSP servers Rob Seastrom (Dec 05)
- Re: CAs with dual stacked CRL/OCSP servers Ben Sjoberg (Dec 05)
- Re: CAs with dual stacked CRL/OCSP servers staticsafe (Dec 07)