Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

OCSP Stapling support #932

Open
2 of 3 tasks
dadrus opened this issue Sep 22, 2023 · 0 comments
Open
2 of 3 tasks

OCSP Stapling support #932

dadrus opened this issue Sep 22, 2023 · 0 comments
Labels
feature Used for new features
Milestone
Future

Comments

@dadrus
Copy link
Owner

dadrus commented Sep 22, 2023

Preflight checklist

Describe the background of your feature request

The Transport Layer Security (TLS) Extension RFC6066 framework defines, among other extensions, the Certificate Status extension (also referred to as "OCSP stapling") that clients can use to request the server's copy of the current status of its certificate. The benefits of this extension include a reduced number of roundtrips and network delays for the client to verify the status of the server's certificate and a reduced load on the certificate issuer's status response servers, thus solving a problem that can become significant when the issued certificate is presented by a frequently visited server.

This extension is not yet supported by heimdall

Describe your idea

Implement support for OCSP stapling

Are there any workarounds or alternatives?

No

Version

v0.11.1-alpha

Additional Context

No response
@dadrus dadrus added the feature Used for new features label Sep 22, 2023
@dadrus dadrus added this to the Future milestone Sep 22, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature Used for new features
Projects
None yet
Milestone
Future
Development

No branches or pull requests
1 participant
@dadrus