Advanced Cybersecurity & Cryptography

Q93 / 100

What is the difference between a CRL and OCSP Stapling?

Correct! Well done.

Incorrect.

The correct answer is B) CRL is a large downloadable list with update latency; OCSP Stapling pre-fetches and attaches the OCSP response to the TLS handshake, improving performance and privacy

B

Correct Answer

CRL is a large downloadable list with update latency; OCSP Stapling pre-fetches and attaches the OCSP response to the TLS handshake, improving performance and privacy

Explanation

OCSP Stapling: server fetches its own OCSP response, signs it, and includes it in the TLS handshake. Client doesn't need to contact the CA (faster, private). Must-Staple extension enforces stapling to prevent soft-fail degradation.

Previous All Questions Next

Progress

93/100

Browse All Cybersecurity & Cryptography Questions

100 questions · beginner to advanced