=== Revocation of Compromised Certificates ===
* CAs should revoke certificates with private keys that are known to be compromised, or for which verification of subscriber information is known to be invalid.
=== Using third-party websites to get WHOIS data ===