CRL And C#

From: "Leeor Chernov" <leeor_chernov@xxxxxxxxxx>
Date: Wed, 18 Oct 2006 17:36:55 +0200

What is the best way to check certificate against CRL, by code.

Should it be directly from the CA site ( CRL Distribution Point http://icd6.ica.co.il/oca02.crl ),
or should I download the crl to the web server hard disk???

TNX

Leeor Chernov

Follow-Ups:
- Re: CRL And C#
  - From: Joe Kaplan

Prev by Date: EnterpriseLibrary.Security and medium trust level
Next by Date: Re: EnvelopedCMS and MailMessage [.NET 2.0 - VB_VS2005]
Previous by thread: EnterpriseLibrary.Security and medium trust level
Next by thread: Re: CRL And C#
Index(es):
- Date
- Thread

Relevant Pages

Re: Smart Card Logon Failure with Windows 2003 Server (works with Windows 2000 server)
... XP and WS2003 do continue to download the CRL even if the ... why is the CRL so large? ... > various machines -- Windows 2000 Professional, ... > CDCs -- on a Windows 2000 CDC, ...
(microsoft.public.win2000.security)
Re: Smart Card Logon Failure with Windows 2003 Server (works with Windows 2000 server)
... why is the CRL so large? ... >Also, the inconsistent certutil behavior. ... >> the machine continued to download the CRL. ... >> But, on a Windows 2003 CDC, if it can't download the CRL ...
(microsoft.public.win2000.security)
Re: Stand Alone CA Problem
... Unless the CRL is valid for a very long time (which is normally a bad ... download is usually many times faster. ... > and imported it in my certificate store. ... In the Edit Trust ...
(microsoft.public.win2000.security)
Re: Smart Card Logon Failure with Windows 2003 Server (works with Windows 2000 server)
... various machines -- Windows 2000 Professional, ... the machine continued to download the CRL. ... CDCs -- on a Windows 2000 CDC, ...
(microsoft.public.win2000.security)
RE: Update Certificate Revocation List (CRL) in IIS using .Net
... If CRL checking is on, ... each client certificate against the downloaded CA CRL to see if it's been ... If the CRL is too old, IIS will automatically go out to the CA ... and download a new one, without requiring any intervention from you. ...
(microsoft.public.inetserver.iis.security)