Everyone says that, but revocation doesn't even work anyway.
- Any time a certificate could be impersonated by an attacker, the attacker is also able to block a revocation check.
- Live revocation checks (A) kill performance, and (B) leak information as a side-channel.
- You could solve this by predownloading every single revocation ever. But that is massive (infeasible for mobile), never going to be up to date, and leaks information about private domains.
See Adam Langley's blog for more about OCSP vs CRLsets.
- Any time a certificate could be impersonated by an attacker, the attacker is also able to block a revocation check.
- Live revocation checks (A) kill performance, and (B) leak information as a side-channel.
- You could solve this by predownloading every single revocation ever. But that is massive (infeasible for mobile), never going to be up to date, and leaks information about private domains.
See Adam Langley's blog for more about OCSP vs CRLsets.