Discuss this help topic in SecureBlackbox Forum
TElOCSPClient provides client-side functionality for Online Certificate Status Protocol (OCSP). This class is a descendant of TElOCSPClass.
Description
OCSP is the protocol that allows to verify certificate status without using Certificate Revocation Lists (CRL) in real-time.
To check one or more certificates:
- assign the storage with certificate(s), whose state must be checked, to CertStorage property;
- add certificates' issuer (CA) certificates by setting IssuerCertStorage property;
- if you want to sign the request, set IncludeSignature property to true and add the certificates, used for signing the request, by setting SigningCertStorage property;
- create the request using CreateRequest method;
- send the request to the server using HTTP, SMTP, TCP or any other transport that you like (for HTTP transport you can use TElHTTPOCSPClient);
- process the reply using ProcessReply method
- to validate the certificate, used to sign the reply, use ReplyCertificates property;
- query various properties of the client to find out status and details about each certificate
To send the request to the server using HTTP you can use
TElHTTPOCSPClient component.
Properties
Inherited from TElOCSPClass
Methods
Events
Inherited from TElOCSPClass
Declared in
.NET:
- Namespace: SBOCSPClient
- Assembly: SecureBlackbox
VCL:Java:
- Package: SecureBlackbox.Base.jar
C++:
Licensing
To use this class in the development and distribution of your software projects, you need to purchase one of the following licenses:
Any SecureBlackbox package
Discuss this help topic in SecureBlackbox Forum