A public-key infrastructure (PKI) is a set of hardware, software, people,
policies, and procedures needed to create, manage, distribute, use, store, and
revoke digital
certificates
Digital certificates provide
support for public key cryptography because digital certificates contain the
public key of the entity identified in the certificate. Because the certificate
matches a public key to a particular individual, and that certificate's
authenticity is guaranteed by the issuer, the digital certificate provides a
solution to the problem of how to find a user's public key and know that it is
valid. These problems are solved by a user obtaining another user's public key
from the digital certificate. The user knows it is valid because a trusted
certification authority has issued the certificate.
In addition, digital certificates
rely on public key cryptography for their own authentication. When a digital
certificate is issued, the issuing certification authority signs the
certificate with its own private key. To validate the authenticity of a digital
certificate, a user can obtain that certification authority's public key and
use it against the certificate to determine if it was signed by the
certification authority.
Hi Qiuzi,
ReplyDeleteI've just read your post on the public key infrastructure as well as the digital certificate. You've provided clear explanation to explain what PKI and digital ceritifcate is. This allows people who're new to this (like me) to understand much more about it!
Also, the video you've provided is really simplified and makes learning much more fun. I feel much better having a video to relate to instead of just reading texts... ah, x.x
okay anyway, well done!
:)
Thank you for this complete information about public key infrastructure. I read the complete detail and is grateful to you for writing and sharing it to help all the people like me.
ReplyDeletepublic key infrastructure