A certificate revocation list (CRL) is a list of certificates (or more specifically, a list of serial numbers for certificates) that are revoked by a certification authority (CA) and are no longer valid. A CRL provides increased security because it provides a mechanism for protecting against certificates that are compromised. The implementation of SSL with Broker Server supports the checking of certificates against the CRL.

For more information, see Configuring Certificate Revocation Checking.