According to the Java SE Community Bug Database the OCSP clock skew issue has been fixed in the following Java releases (OSCP validation code should permit some clock skew when checking the validity of OCSP responses):
1. JDK-674888 (Bug - affected version 6u11)
2. JDK-2166696 (Backport – fixed version 6u10 (b32)
3. JDK-2186994 (Backport – fixed version OpenJDK6 (b18)
JDK-2166740 (Backport – fixed version 7 (b41))
In addition ORACLE Java SE documentation states that the clock skew is configured as part of the deployment configuration property file (Security Access And Control settings).
1. Property Key - deployment.security.validation.clockskew
2. Type – integer
Default value 900 - Acceptable time difference, in seconds, between the system clock and the clock on the server used for revocation checks. If the property is not set, or the value is negative, the default of 900 seconds (15 minutes) is used
Can the OCSP clock skew window be configured in Java 8?