certificate revocation

where a certificate is added to certificate revocation lists CRLs or Online Certificate Status Protocol OCSP.

The reasons for revoking a certificate includes,

• compromised private key
• erroneously issued signed certificate
• change of certificate details
• security association changed