You need to minimize the amount of time it takes for client computers to download a certificate revocation list (CRL)
You need to ensure that unauthorized users are not able to access the shared folder that contains confidential data
You need to ensure that only the Security Manager is authorized to revoke certificates that are supplied by Server1