22Oca
How are X.509 certificate revoked?
I would like to know how are X.509 certificates revoked.
That is: Say I have an X509 certificate, and I want it to be revoked for whatever reason (e.g., compromise). How do I reach out to the CA? What information do I need to provide? How is that information authenticated?
Is there any standard covering this? Or, instead, each CA follows its own approach? As in, an RFC that specifies the messages that have to be exchanged, their format, how are they authenticated, etc.
All I can find is the RFCs covering CRL and OCSP, but that describes how to check if a credential is revoked, not how to revoke one.
