Our staff have been both technical services providers and managers of IT departments, this enables us to help you to understand your options through independent advice. | Mac OS X Security Framework Online Certificate Status Protocol (OCSP) Revoked Certificate Weakness |
| Tuesday, 14 November 2006 | |
|
Mac OS X contains a flaw that may allow a malicious user to used a revoked certificate. The issue is triggered when an HTTP proxy is in use, which interferes with the Online Certificate Status Protocol (OCSP). It is possible that the flaw may allow revoked certificates to be used without warning resulting in a loss of integrity. Read more... |