In some cases it might be necessary for the issuer to revoke certificates. Reasons could be that it is uncovered that there was a problem with the provided generation evidence or the user did not pay the registry fee. As a result, the issuer has the power to revoke certificates and certificate requests. Once a certificate is revoked, it can no longer be claimed or transferred (not implemented, yet) because its
validityData() callback function will return that it is invalid. To revoke a certificate, the issuer has to revoke the issuance request made by the device owner by calling the
revoke() function on the certificate object or request object. Revoking a certificate will automatically revoke the issuance request and invalidate its validity data. Revoking works for both public and private certificates.
Who: The issuer
What: Revoke certificates and certificate requests