Peter MountJul 30, 2024

If anyone uses DigiCert for their certificates, be aware they are revoking a lot of them over the next 24 hours & you need to renew them before then.

https://www.digicert.com/support/certificate-revocation-incident

I'm not affected as I don't use them but this could cause chaos for those that do

#digiCert #certificateRevocation

Certificate Revocation Incident | DigiCert

OPSEC Cybersecurity News LiveMar 16, 2023
Do current browsers still validate CRLs in enterprise PKI environments

https://security.stackexchange.com/questions/269162/do-current-browsers-still-validate-crls-in-enterprise-pki-environments

#publickeyinfrastructure #certificaterevocation
Do current browsers still validate CRLs in enterprise PKI environments

I know that modern web browsers don't check CRLs for certificates from CAs in the default trust store anymore. I also know that there are some exceptions for certificate validation when it comes to

Information Security Stack Exchange
OPSEC Cybersecurity News LiveMar 12, 2023
Does a certificate revocation list (CRL) keep it's entries at least as long as the certificate would have been valid?

https://security.stackexchange.com/questions/269076/does-a-certificate-revocation-list-crl-keep-its-entries-at-least-as-long-as-t

#certificaterevocation #certificateauthority #certificates
Does a certificate revocation list (CRL) keep it's entries at least as long as the certificate would have been valid?

This question is specifically about certificates that should have had a long lifetime, but were revoked quickly. Is every CRL issued by this CA guaranteed to include its revocation, as long as the

Information Security Stack Exchange