This document is a Mac OS X manual page. Manual pages are a command-line technology for providing documentation. You can view these manual pages locally using the man(1) command. These manual pages come from many different sources, and thus, have a variety of writing styles.

For more information about the manual page format, see the manual page for manpages(5).

ocspd(1)                  BSD General Commands Manual                 ocspd(1)

NAME
     ocspd -- OCSP and CRL Daemon

SYNOPSIS
     ocspd

DESCRIPTION
     ocspd performs caching and network fetching of Certificate Revocation Lists (CRLs) and Online Certifi-cate Certificate
     cate Status Protocol (OCSP) responses. It is used by Security.framework during certificate verifica-tion. verification.
     tion. Security.framework communicates with ocspd via a private RPC interface. When Security.framework
     determines that a CRL is needed, or that it needs to perform an OCSP transaction, it performs an RPC to
     ocspd which then examines its cache to see if the appropriate CRL or OCSP response exists and is still
     valid. If so, that entity is returned to Security.framework. If no entry is found in cache, ocspd
     obtains it from the network, saving the result in cache before returning it to Security.framework.

     This command is not intended to be invoked directly.

FILES
     /private/var/db/crls/crlcache.db   CRL cache
     /private/var/db/crls/ocspcache.db  OCSP response cache

HISTORY
     ocspd was first introduced in Mac OS X version 10.4 (Tiger).

AUTHORS
     Doug Mitchell

Darwin                           April 2, 2008                          Darwin