Core Features

Khatim OCSP Server adheres to the industry standards set by IETF and CA/B Forum for OCSP response, which includes RFC 6960 and 5019 profiles. This allows seamless integration with a wide range of business applications such as Adobe Acrobat, Microsoft Office, web browsers & web servers.

Integrate with your existing HSMs using PKCS#11 like Entrust nShield, Thales Luna, Protect Server, Utimaco Cryptoserver etc. It also seamlessly integrates with non PKCS#11 based HSM like Microsoft Azure Key Vault, AWS Cloud HSM and Google Cloud HSM.

Admins can monitor their OCSP servers in real-time, and filter data based on revocation status, policies, success/failure, signing algorithm, and more. Khatim OCSP server also creates daily summary reports along similar data points providing administrator a snapshot of what types of OCSP responses were generated during the day, failures and alerts.

Have multiple CAs or PKIs? A single deployment of Khatim OCSP Server can handle multiple Certification Authorities, PKI, local or remote CAs. Easily setup multiple OCSP policies by identifying OCSP signing certificate, CA to serve, whether to add extended revocation information and more.

Trusted resources access key functions via powerful, multi factor authentication using military-grade TLS Client authentication.

Khatim OCSP Server offers a range of options for revocation checking, including real-time by accessing the list of issued digital certificates by the CA. It can also use CRLs issued by the CA to respond to incoming OCSP requests, making it compatible with both online and offline CAs.

Khatim OCSP server supports diverse cryptographic requirements such as:

The Khatim OCSP server is platform-independent, making it compatible with both Windows and Linux. It can be easily deployed in various environments, including:

Khatim OCSP server logs and saves all incoming transactions and configurations for thorough analysis. Administrators can easily download and review request/responses in real-time for server status checks and troubleshooting purposes. All updates made to the system is also recorded providing a reliable audit trail.

Khatim OCSP server can form a cluster of multiple OCSP servers to minimize latency. New OCSP servers can be added without stopping the running instances, resulting in high throughput.

Khatim OCSP server sends proactive notifications to administrators in case of server malfunction. All issues are recorded for traceability and can also be securely pushed to your central logging systems such:

Upgrade to Khatim OCSP Server and eliminate performance bottlenecks while reusing your existing OCSP keys. Say goodbye to legacy OCSP servers effortlessly.