Get the latest tech news

Let's Encrypt to end OCSP support in 2025


Well, the writing has been on the wall for some years now, arguably over a decade, but the time has finally come where the largest CA in the World is going to drop support for the Online Certificate Status Protocol. What is OCSP? The Online Certificate Status Protocol is a

Well, the writing has been on the wall for some years now, arguably over a decade, but the time has finally come where the largest CA in the World is going to drop support for the Online Certificate Status Protocol. OCSP Stapling is awesome, and everyone should support it, even now, because it does help to protect the privacy and performance of visitors to your site, but sadly, it doesn't add any tangible benefit, it only removes the negatives. Using a probabilistic data structure called a Bloom Filter, with full details in the linked blog post, it looks like we finally have a solution for the problem of revocation.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of OCSP

OCSP

Photo of Encrypt

Encrypt

Photo of OCSP support

OCSP support

Related news:

News photo

Thruster – HTTP/2 proxy for Rails apps with built-in Let's Encrypt and caching

News photo

Let's Encrypt Announces New-Certificate-Every-6-Days Offering

News photo

Let's Encrypt is 10 years old now