What is 'certificate revocation list' in SAP BC-SEC - Security?

Key Concepts: 
A Certificate Revocation List (CRL) is a list of digital certificates that have been revoked by the issuing Certificate Authority (CA) before their scheduled expiration date. It is used to ensure that any certificates that have been compromised or are no longer valid are not used for authentication or encryption. The CRL is maintained by the CA and is available to all users who need to verify the validity of a certificate. 

How to use it: 
In SAP systems, the CRL is used to verify the validity of digital certificates used for authentication and encryption. When a user attempts to authenticate or encrypt data, the system will check the CRL to ensure that the certificate being used is still valid. If the certificate has been revoked, then authentication or encryption will not be allowed. 

Tips & Tricks: 
It is important to keep the CRL up-to-date in order to ensure that only valid certificates are used for authentication and encryption. The CRL should be checked regularly and updated as needed. 

Related Information: 
The CRL is part of the BC-SEC Security component in SAP systems. It is related to other security components such as Secure Network Communications (SNC), Secure Login, and Secure Store and Forward (SSF).