OCSPn

OCSPn is a term occasionally used in documentation to describe an extension or variation of the Online Certificate Status Protocol (OCSP) that employs a nonce in requests and responses to prevent replay attacks. It is not a separate, formal standard; rather, it refers to OCSP behavior that uses the nonce feature described in RFC-based OCSP specifications.

OCSP allows clients to query a certificate’s revocation status in real time. A client sends an OCSPRequest

In practice, OCSPn-like behavior is used by modern browsers and TLS implementations to improve the freshness

Security considerations include improved protection against replay attacks and better assurance of data freshness. Potential drawbacks

See also: OCSP, RFC 6960, OCSP stapling, certificate revocation.