Digital CertificatesTrust centres are responsible for storing private and/or public keys, and digital certificates are used to store and distribute private and/or public keys.
|
Diagrams
With the PKI (Public Key Infrastructure), Alice and Bob create a key pair (a public key and a private key), and where Trent will verify their public key. If Bob wants to prove his identity and verify the integrity of a message, he will sign a hash of the message with his private key:
Alice will then check the signature for the message using Bob's public key. For this, Bob's public key is encapsulated in an X.509 format, and which has been signed with the private key of a trusted entity (Trent). This takes the form of a digital certificate, and where Alice checks the validity of the certificate with Trent's public key.
Presentation