OCSP Nonce Extension

Document Type Replaced Internet-Draft (individual)
Author Mohit Sahni 
Last updated 2020-04-03
Replaced by RFC 8954
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-lamps-ocsp-nonce
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document specifies the updated format of the Nonce extension in Online Certificate Status Protocol (OCSP) request and response messages. OCSP is used to check the status of a certificate and the Nonce extension is used in the OCSP request and response messages to avoid replay attacks. This document updates the RFC 6960


Mohit Sahni (msahni@paloaltonetworks.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)