When validating END ENTITY certificates, STRICTLY require fresh revocation information
OS: Linux → All
Hardware: x86 → All
OneCRL is probably as close as we're going to get here. In the distant future, it may be possible to be more strict, but we're a long way from that.
Status: NEW → RESOLVED
Last Resolved: 3 years ago
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.