A custom PKI application downloads a certificate revocation list (CRL) once per day. Management requests the
list be checked more frequently. Which of the following is the BEST solution?
Refresh the CA public key each time a user logs in
Download the CRK every 60 seconds
Implement the OCSP protocol
Prompt the user to trust a certificate each time it is used