Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.

Global Accelerated Learning • Est. 1999
Glossary Term OCSP Stapling

Training Camp • Cybersecurity Glossary

What is OCSP Stapling?

OCSP stapling lets a TLS server attach a signed certificate-status response to the handshake, improving performance and protecting client privacy.

Glossary > Cryptography & PKI > OCSP Stapling

Understanding OCSP Stapling

OCSP stapling is a TLS extension in which a web server periodically obtains a signed, time-stamped certificate-status response from the certificate authority and attaches, or staples, it to the TLS handshake. This removes the need for each client to query the CA's OCSP responder directly, improving handshake performance and protecting user privacy. Defined in the TLS Certificate Status Request extension RFC 6066, it can be reinforced with the OCSP Must-Staple flag to prevent downgrade.

Learn More About OCSP Stapling:

Ready to Get Certified?

Turn knowledge into credentials with our instructor-led cybersecurity boot camps.

View All Courses →