[zz]How certificate chains work

http://publib.boulder.ibm.com/infocenter/wmqv6/v6r0/index.jsp?topic=/com.ibm.mq.csqzas.doc/sy10600_.htm

How certificate chains work

When you receive the certificate for another entity, you might need touse a certificate chain to obtain the root CA certificate. The certificate chain, also known as the certification path, is a list of certificates used to authenticate anentity. The chain, or path, begins with the certificate of that entity, andeach certificate in the chain is signed by the entity identified by the nextcertificate in the chain. The chain terminates with a root CA certificate.The root CA certificate is always signed by the CA itself. The signaturesof all certificates in the chain must be verified until the root CA certificateis reached. Figure 1 illustrates a certification path fromthe certificate owner to the root CA, where the chain of trust begins.

Figure 1. Chain oftrust

This diagram shows the signature on a user certificate verified with a CA certificate that is itself verified with the root CA certificate. The certificates are on a certification path.

posted @ 2010-07-11 13:29 bettermanlu 阅读(257) 评论(0) 收藏举报

刷新页面返回顶部

Justify for QA

Who said testing is easy?

[zz]How certificate chains work

How certificate chains work

公告