Revision as of 20:12, 13 June 2022 edit Edward (talk \| contribs) Administrators 94,541 edits m link Moxie Marlinspike using Find link ← Previous edit		Latest revision as of 09:26, 14 July 2023 edit undo Polyphemus Goode (talk \| contribs) Extended confirmed users 1,099 edits link revocation status
Line 14: * The public key algorithm and parameters are checked; * The current date/time is checked against the validity period of the certificate; * The [[revocation status]] is checked, whether by [[Certificate revocation list\|CRL]], [[Online Certificate Status Protocol\|OCSP]], or some other mechanism, to ensure the certificate is not revoked; * The issuer name is checked to ensure that it equals the subject name of the previous certificate in the path; * Name constraints are checked, to make sure the subject name is within the permitted subtrees list of all previous CA certificates and not within the excluded subtrees list of any previous CA certificate;

Certification path validation algorithm: Difference between revisions