OCSP (Online Certificate Status Protocol)
Embed This Widget
Add the script tag and a data attribute to embed this widget.
Embed via iframe for maximum compatibility.
<iframe src="proxy.php?url=https%3A%2F%2Fstatuscodefyi.com%2Fiframe%2Fglossary%2Focsp%2F" width="420" height="400" frameborder="0" style="border:0;border-radius:10px;max-width:100%" loading="lazy"></iframe>Paste this URL in WordPress, Medium, or any oEmbed-compatible platform.
https://statuscodefyi.com/glossary/ocsp/Add a dynamic SVG badge to your README or docs.
[](https://statuscodefyi.com/glossary/ocsp/)Use the native HTML custom element.
A protocol (RFC 6960) for checking in real time whether a TLS certificate has been revoked by its issuing CA, as a more efficient alternative to downloading full Certificate Revocation Lists (CRLs). The client sends a request to the CA's OCSP responder URL embedded in the certificate and receives a signed response of 'good', 'revoked', or 'unknown'. A major limitation is that OCSP checks reveal the websites a client visits to the CA's OCSP server, raising privacy concerns that OCSP Stapling and OCSP Must-Staple were designed to address.