This is interesting and hot topic. Did you know that Google stopped the online validation of SSL server certificate revocations in Chrome browser? The situation with certificate revocation validation has been discussed by representatives of major browser software vendors during recent RSA conference. OCSP Stapling looks to me like most promising solution.
Click to set custom HTML