Internet Security – Certificates

Digital Certificates are a standard of security for establishing an encrypted link between a server and a client. Generally, between a mail server or a webserver, which protects data in transitions by encrypting them. A Digital Certificate is also a Digital ID or a passport which is issued by a Third Party Authority which verifies the identity of the server’s owner and not claiming a false identity.

Components of a Digital Certificate

All these following components can be found in the certificate details βˆ’

  • Serial Number βˆ’ Used to uniquely identify the certificate.
  • Subject βˆ’ The person, or entity identified.
  • Signature Algorithm βˆ’ The algorithm used to create the signature.
  • Signature βˆ’ The actual signature to verify that it came from the issuer.
  • Issuer βˆ’ The entity that verified the information and issued the certificate.
  • Valid-From βˆ’ The date the certificate is first valid from.
  • Valid-To βˆ’ The expiration date.
  • Key-Usage βˆ’ Purpose of the public key (For example: encipherment, signature, certificate signing…).
  • Public Key βˆ’ The public key.
  • Thumbprint Algorithm βˆ’ The algorithm used to hash the public key certificate.
  • Thumbprint βˆ’ The hash itself, used as an abbreviated form of the public key certificate.

Levels of Validations

In this section we will discuss the various levels of validations of an SSL (Secure Sockets Layer) Certificate. Some of the most important ones are as follows βˆ’

  • Domain Validation SSL Certificate βˆ’ It validates the domain that is registered by a system administrators and they have administrator rights to approve the certificate request, this validation generally is done by email request or by a DNS record.
  • Organization Validated SSL Certificates βˆ’ It validates the domain ownership and also the business information like the Official Name, City, Country, etc. This validation is done by email or DNS record entering and the certificate authority would also need some genuine documents to verify the Identity.
  • Extended Validation SSL Certificates βˆ’ It validates domain ownership and organization information, plus the legal existence of the organization. It also validates that the organization is aware of the SSL certificate request and approves it. The validation requires documentation to certify the company identity plus a set of additional steps and checks. The Extended Validation SSL Certificates are generally identified with a green address bar in the browser containing the company name.

The reviews and some of the biggest digital certificate providers’ details can be found in the following link βˆ’ https://www.sslshopper.com/certificate-authority-reviews.html

Leave a Reply