policy/files/x509/log-ocsp.bro¶
-
OCSP¶
Enable logging of OCSP responses.
| Namespace: | OCSP |
|---|---|
| Source File: | /scripts/policy/files/x509/log-ocsp.bro |
Summary¶
Types¶
OCSP::Info: record |
The record type which contains the fields of the OCSP log. |
Events¶
OCSP::log_ocsp: event |
Event that can be handled to access the OCSP record as it is sent to the logging framework. |
Detailed Interface¶
Types¶
-
OCSP::Info¶ Type: - ts:
time&log Time when the OCSP reply was encountered.
- id:
string&log File id of the OCSP reply.
- hashAlgorithm:
string&log Hash algorithm used to generate issuerNameHash and issuerKeyHash.
- issuerNameHash:
string&log Hash of the issuer’s distingueshed name.
- issuerKeyHash:
string&log Hash of the issuer’s public key.
- serialNumber:
string&log Serial number of the affected certificate.
- certStatus:
string&log Status of the affected certificate.
- revoketime:
time&log&optional Time at which the certificate was revoked.
- revokereason:
string&log&optional Reason for which the certificate was revoked.
- thisUpdate:
time&log The time at which the status being shows is known to have been correct.
- nextUpdate:
time&log&optional The latest time at which new information about the status of the certificate will be available.
The record type which contains the fields of the OCSP log.
- ts:
Events¶
-
OCSP::log_ocsp¶ Type: event(rec:OCSP::Info)Event that can be handled to access the OCSP record as it is sent to the logging framework.
Copyright 2016, The Bro Project.
Last updated on December 19, 2018.
Created using Sphinx 1.8.2.