Windows.CRL.Request
Description
This indicates an attempt to download the latest Root CA Certificate Revocation List from Windows servers.Microsoft Windows requests for the CRL when users download and run an executable file from other websites. This is done to check if a certificate is issued fraudulently or if the issuer requested for the certificate to be revoked.
Affected Products
Microsoft Windows
Impact
Unexpected network communication
Technology
Browser-Based, Network-Protocol, Client-Server, Peer-to-Peer, Cloud-Based, Mobile-Device
Behavior
- Reasonable
Default Ports
- TCP/80