Tech »  Topic »  Let’s Encrypt to End Support for Online Certificate Status Protocol (OCSP)

Let’s Encrypt to End Support for Online Certificate Status Protocol (OCSP)

2 weeks, 2 days ago   gbhackers

Let’s Encrypt has officially announced its timeline to phase out support for the Online Certificate Status Protocol (OCSP).

The nonprofit Certificate Authority (CA) plans to fully transition to Certificate Revocation Lists (CRLs) by mid-2025, citing privacy concerns and efficiency gains as primary reasons for the change.

Phased Timeline for Transition

Let’s Encrypt rolled out a detailed schedule to guide its users through this transition:

- Advertisement -

  • January 30, 2025: OCSP Must-Staple requests will fail unless the account has a prior history of issuing certificates with the extension.
  • May 7, 2025: Certificates will no longer include OCSP URLs, and all requests for the OCSP Must-Staple extension will fail. CRL URLs will be added to certificates before this date.
  • August 6, 2025: Let’s Encrypt will fully deactivate its OCSP responders, marking the end of its OCSP services.

Leveraging 2024 MITRE ATT&CK Results for SME & MSP Cybersecurity Leaders – Attend Free ...


Copyright of this story solely belongs to gbhackers . To see the full text click HERE