Name : pki-ocsp
| |
Version : 10.0.7
| Vendor : Fedora Project
|
Release : 1.fc19
| Date : 2014-03-19 09:43:38
|
Group : System Environment/Daemons
| Source RPM : pki-core-10.0.7-1.fc19.src.rpm
|
Size : 0.34 MB
| |
Packager : Fedora Project
| |
Summary : Certificate System - Online Certificate Status Protocol Manager
|
Description :
The Online Certificate Status Protocol (OCSP) Manager is an optional PKI subsystem that can act as a stand-alone OCSP service. The OCSP Manager performs the task of an online certificate validation authority by enabling OCSP-compliant clients to do real-time verification of certificates. Note that an online certificate-validation authority is often referred to as an OCSP Responder.
Although the Certificate Authority (CA) is already configured with an internal OCSP service. An external OCSP Responder is offered as a separate subsystem in case the user wants the OCSP service provided outside of a firewall while the CA resides inside of a firewall, or to take the load of requests off of the CA.
The OCSP Manager can receive Certificate Revocation Lists (CRLs) from multiple CA servers, and clients can query the OCSP Manager for the revocation status of certificates issued by all of these CA servers.
When an instance of OCSP Manager is set up with an instance of CA, and publishing is set up to this OCSP Manager, CRLs are published to it whenever they are issued or updated.
This package is one of the top-level java-based Tomcat PKI subsystems provided by the PKI Core used by the Certificate System.
================================== || ABOUT \"CERTIFICATE SYSTEM\" || ==================================
Certificate System (CS) is an enterprise software system designed to manage enterprise Public Key Infrastructure (PKI) deployments.
PKI Core contains ALL top-level java-based Tomcat PKI components:
* pki-symkey * pki-base * pki-tools * pki-selinux (f17 only) * pki-server * pki-ca * pki-kra (fedora only) * pki-ocsp (fedora only) * pki-tks (fedora only) * pki-javadoc
which comprise the following corresponding PKI subsystems:
* Certificate Authority (CA) * Data Recovery Manager (DRM) (fedora only) * Online Certificate Status Protocol (OCSP) Manager (fedora only) * Token Key Service (TKS) (fedora only)
For deployment purposes, PKI Core contains fundamental packages required by BOTH native-based Apache AND java-based Tomcat Certificate System instances consisting of the following components:
* pki-tools * pki-selinux (f17 only)
Additionally, PKI Core contains the following fundamental packages required ONLY by ALL java-based Tomcat Certificate System instances:
* pki-symkey * pki-base * pki-tools * pki-server
PKI Core also includes the following components:
* pki-javadoc
Finally, if Certificate System is being deployed as an individual or set of standalone rather than embedded server(s)/service(s), it is strongly recommended (though not explicitly required) to include at least one PKI Theme package:
* dogtag-pki-theme (Dogtag Certificate System deployments) * dogtag-pki-server-theme * redhat-pki-server-theme (Red Hat Certificate System deployments) * redhat-pki-server-theme * customized pki theme (Customized Certificate System deployments) * < customized>-pki-server-theme
NOTE: As a convenience for standalone deployments, top-level meta packages may be provided which bind a particular theme to these certificate server packages.
|
RPM found in directory: /packages/linux-pbone/archive.fedoraproject.org/fedora-secondary/updates/19/s390x |