A custom PKI application downloads a certificate revocation list (CRL) once per day. Management requests the list be checked more frequently. Which of the following is the BEST solution?
A. Refresh the CA public key each time a user logs in
B. Download the CRK every 60 seconds
C. Implement the OCSP protocol
D. Prompt the user to trust a certificate each time it is used