Stack Overflow
Stack Overflow

Questions tagged [digital-certificate]

A certificate which uses a digital signature to bind together a public key with an identity or information.

In cryptography, a public key certificate (or identity certificate) is a certificate which uses a digital signature to bind together a public key with an identity — information such as the name of a person or an organization, their address, and so forth. The certificate can be used to verify that a public key belongs to an individual.

In a typical public key infrastructure (PKI) scheme, the signature will be of a certificate authority (CA). In a web of trust scheme, the signature is of either the user (a self-signed certificate) or other users ("endorsements"). In either case, the signatures on a certificate are attestations by the certificate signer that the identity information and the public key belong together.

484 questions
104
votes
3 answers

Digital Certificate: How to import .cer file in to .truststore file using?

Has anyone came across where they have to deal with .truststore file? and knowing how to import .cer into .truststore file? I am not sure if I have to use Java Keytool or Linux command (such as openssl command). Thanks
netic
  • 2,854
  • 6
  • 28
  • 25
86
votes
2 answers

Difference Between SSLCACertificateFile and SSLCertificateChainFile

I provide SSL pages on my web server, and I have a question. What is the difference between SSLCACertificateFile and SSLCertificateChainFile? When I use SSLCertificateChainFile, I got warnings from Japanese cellular phone browser, but when I use PC…
nam
  • 1,061
  • 1
  • 9
  • 8
53
votes
10 answers

what is the difference between digital signature and digital certificate?

i've been google'ing the difference between digital signature and digital certificate (asymmetric encryption) seems like they are the same. I would like to clarify if they are the same or not? many thanks!!!
Bugzy bug
  • 621
  • 2
  • 8
  • 13
47
votes
7 answers

What's the difference between rapidSSL and geotrust certificates?

I want to buy a 128bit SSL certificate for a website selling services. I checked http://www.rapidssl.com/ssl-certificate-products/ssl-certificate.htm and http://www.geotrust.com/ssl/compare-ssl-certificates.html. Why are the prices for QuickSSL…
Vitaly Sharovatov
  • 922
  • 1
  • 8
  • 12
42
votes
4 answers

How to decode a CSR File?

I ran accross a CSR file (Certificate Signing Request) and I need to extract some information from it. There's a way to decode it using .NET Framework?
Romias
  • 13,783
  • 7
  • 56
  • 85
32
votes
3 answers

openssl command hangs

The following request to openssl hangs openssl req -key server.key -out server.csr Any idea what the problem could be?
Prakash Raman
  • 13,319
  • 27
  • 82
  • 132
30
votes
2 answers

Checking digital signature programmatically from Delphi

I need a function in Delphi to verify the digital signature of an external EXE or DLL. In my particular application, I am going to occasionally invoke other processes, but for security purposes I want to make sure these executables were created by…
kes
  • 5,983
  • 8
  • 41
  • 69
30
votes
4 answers

What is contained in "./META-INF/CERT.RSA" file for an Android app?

I am new to cryptography certificate and am trying to figure out the components of "CERT.RSA" file under "./META-INF" folder for an Android application. To my understanding, "CERT.RSA" is used to verify the signiture of "CERT.SF" file under the same…
user3361508
  • 815
  • 3
  • 10
  • 11
28
votes
2 answers

Client Authentication via X509 Certificates in asp.net

I have an asp.net application and I need to authenticate users using X509 certificates. That is, the user must install a certificate issued by me so that he can browse my website and I can identify which user is, by this certificate. I have already…
enb081
  • 3,831
  • 11
  • 43
  • 66
24
votes
2 answers

Saving certificate chain in a pkcs12 keystore

The following code: //used Bouncy Castle provider for keyStore keyStore.setKeyEntry(alias, (Key)keyPair.getPrivate(), pwd, certChain); where certChain holds the end certificate and the issuer certificate (i.e. two certificates), doesn't save the…
Cratylus
  • 52,998
  • 69
  • 209
  • 339
23
votes
3 answers

OpenSSL: socket: Connection refused connect:errno=111

I am trying to connect to one Linux server from a client, openssl s_client -connect :443 I am getting the following error: socket: Connection refused connect:errno=111
user3345390
  • 421
  • 2
  • 6
  • 14
22
votes
3 answers

Python: reading a pkcs12 certificate with pyOpenSSL.crypto

I have a valid certificate issued by the spanish authority (FNMT) and I want to play with it to learn more about it. The file has extension .p12 I would like to read the information in it (first and last name) and check if the certificate is valid.…
nemesisdesign
  • 8,159
  • 12
  • 58
  • 97
21
votes
4 answers

How to programmatically verify an assembly is signed with a specific Certificate?

My scenario is we have one program (exe) that will start other programs if found in a particular folder. I want to ensure it only ever starts programs which are signed with our Corporate certificate (Verisign approved etc). Essentially then it will…
Aaron
  • 579
  • 1
  • 4
  • 12
21
votes
1 answer

Proper way to digitally sign the application having referenced assemblies

I have an application that has 1 referenced assembly (test.exe, test.dll) What I want is when the test.exe runs, it should show publisher name as "TestCompany". To do that, I digitally signed it and it does what I want. And if I alter one byte of…
xmen
  • 1,947
  • 2
  • 25
  • 47
21
votes
5 answers

Digital certificates: What is the difference between encrypting and signing

I am relatively new to PKI, certificates and all related stuff. As far as I understand in public-key cryptography one encrypt with a public key and decrypt with a private key. Only one private key can correspond to any public key but the opposite is…
user1745356
  • 4,462
  • 7
  • 42
  • 70
1
2 3
32 33