CRL distribution point is a very broad term that can include a great number of different mechanisms for making CRL's available to end entities, both client and servers. The major concern when selecting the technology which will be used for making them available is whether the services meant to access the CRL's are actually capable to do so using a particular CRL distribution point type.

The simplest distribution point is definitively the one based on the simple HTTP protocol, serving static files on top of a web server. There are many different web servers which could be used to this end. Those include:

  • Apache HTTP Server
  • lighttpd
  • nginx
  • Cherokee

What's common to all of the web servers above is that they do not require anything special in their own configuration - most standard configurations will suffice. Also, in case of serving simple static content, another useful fact is that it's possible to employ a common "synchronisation" method for all of them (for example, using a simple scp command).

This section of the book will deal with distribution of CRL's to their destinations, as well as with configuration of the HTTP servers to serve those CRL's.