Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support certificate revocation list(CRL) #1652

Open
1 task
binbin-li opened this issue Jul 23, 2024 · 0 comments · May be fixed by #1789
Open
1 task

Support certificate revocation list(CRL) #1652

binbin-li opened this issue Jul 23, 2024 · 0 comments · May be fixed by #1789
Assignees
@junczhu
Labels
enhancement New feature or request
Milestone
v1.4.0

Comments

@binbin-li
Copy link
Collaborator

What would you like to be added?

Certificate validation is an essential step during signature validation. Currently Ratify supports checking for revoked certificates through OCSP supported by notation-go library. However, OCSP validation requires internet connection for each validation while CRL could be cached for better performance. As notary-project is adding the CRL support for notation signature validation, Ratify could utilize it for free.

Anything else you would like to add?

No response

Are you willing to submit PRs to contribute to this feature?

  • Yes, I am willing to implement it.
@binbin-li binbin-li added enhancement New feature or request triage Needs investigation and removed triage Needs investigation labels Jul 23, 2024
@binbin-li binbin-li added this to the v1.4.0 milestone Jul 25, 2024
@junczhu junczhu self-assigned this Aug 10, 2024
@junczhu junczhu linked a pull request Sep 18, 2024 that will close this issue
Open
9 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@junczhu junczhu

Labels
enhancement New feature or request
Projects
None yet
Milestone
v1.4.0
Development

Successfully merging a pull request may close this issue.

docs: add CRL Design junczhu/ratify
2 participants
@binbin-li @junczhu