Difference between common-httpclient 3.0 and httpclient 4.0
Hi,
I am using SSL communicaiton between client and server machine.The JDK version is 1.6.0_19.I am using HttpClient 4.0 now.I used common-Httpclient 3.0 earlier. The client and the server both are having the certificate.Here we are doing mutual authentication sending the certificate to each other.
If I use the command -Djavax.net.debug=all command I am able to see the detail client and server communicaiton.I wanted to know, what are the destination server it is reaching and that's why I have used wireShark.I have seen a difference here.If I use common-httpclient 3.0 component then it is reaching the verisign site to import the CRL.But if I use httpclient 4.0 then it is not reaching the verisign site.It might be reaching the verisign site for the CRL check.
I know internally it is using the JSSE component.
Here are my questions :
I like to know why this difference is happening?
Is the httpclient initiate CRL checking?
Howcan I initiate the OCSP instead of CRL check using the httpclient and the JSSE?
how could I check the detail log?
I like to know based on what condition the application is reaching the verisign site(means CRL checking).
Please help me out.