X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP
RFC 6960, “X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP”, is a Proposed Standard document published in June 2013 by S. Santesson, M. Myers, R. Ankney, A. Malpani, S. Galperin, C. Adams. It updates RFC 5912. It obsoletes RFC 2560, RFC 6277. It has since been updated by RFC 8954, RFC 9654. The canonical text is published by the RFC Editor.
Abstract
This document specifies a protocol useful in determining the current status of a digital certificate without requiring Certificate Revocation Lists (CRLs). Additional mechanisms addressing PKIX operational requirements are specified in separate documents. This document obsoletes RFCs 2560 and 6277. It also updates RFC 5912.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 6960 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 6959 Source Address Validation Improvement Threat Scope
- RFC 6961 The Transport Layer Security Multiple Certificate Status Request Extension
- RFC 6958 RTP Control Protocol Extended Report Block for Burst/Gap Loss Metric Reporting
- RFC 6962 Certificate Transparency
- RFC 6957 Duplicate Address Detection Proxy
- RFC 6963 A Uniform Resource Name Namespace for Examples
- RFC 6956 Forwarding and Control Element Separation Logical Function Block Library
- RFC 6964 Operational Guidance for IPv6 Deployment in IPv4 Sites Using the Intra-Site Automatic Tunnel Addressing Protocol