How the browser verifies that the web server's certificate was signed by the trusted certificate authority?

Question

I wonder if anyone can provide more detailed description of point 2 of the answer to How are ssl certificates verified?.

What algorithms are used to verify that the certificate was signed by the trusted CA? What ideas are they based on? Why it is not possible to simulate trusted CA signature (make a certificate that the browser will treat as valid)?

score 0 · Answer 1 · answered Jul 13 '17 at 10:31

0

It's a digital signature. You can verify it via the public key in the associated certificate. The algorithms are as specified in the certificate itself.

answered Jul 13 '17 at 10:31

user207421

305,947
44
307
483

too general answer – Koban Jul 13 '17 at 11:53

How the browser verifies that the web server's certificate was signed by the trusted certificate authority?

1 Answers1