IKEv2
Click on the red underlined text to get to the source
... through the use of Certificate Revocation Lists (CRLs). IKEv2 allows
CRLs to be exchanged in-band ...
... OCSP
response is bounded and small and therefore suitable for in-band
IKEv2 signaling of a certificate's revocation status ...
... revocation status.
This document defines an extension to IKEv2 that enables the use of
OCSP for in-band ...
... responders and is a request for inclusion of an OCSP response in
the IKEv2 handshake. A cooperative recipient of such a request
responds with a CERT ...
...
This section shows the standard IKEv2 message examples with both
peers, the initiator and the responder ...
...
Application of the IKEv2 extensions defined in this document to the
peer-to-peer exchange defined in Section 1.2 of [IKEv2 ...
... not used, see Section 6).
It is also important in extending IKEv2 toward OCSP in this scenario
that the Initiator ...
... certificate status check of
the server side IKEv2 certificate and not for certificates that may
...
...
This document defines one new field type for use in the IKEv2 Cert
Encoding field of the Certificate Payload ...