Answer the question
In order to leave comments, you need to log in
G
G
GR212019-02-14 21:59:46
GR21, 2019-02-14 21:59:46
How does a provider sign an ssl certificate without a key?
Good day!
We are convinced that HTTPS is secure. But is it? After all, the publisher of the certificate somehow publishes it only according to the CSR, which does not contain a secret key, but only a public (?)
Prompt?
3 answer(s)
@GR21
@GR21
C
CityCat4, 2019-02-15 @GR21
Read something like "Asymmetric cryptography for dummies".
The private key should not go to untrusted persons at all. From the word at all. Getting a key to a third party is an opportunity to identify yourself as the object that is in the certificate (person, equipment, server).
In CSR, it is the common key and the data that will be entered into the certificate (by the way, not everything is necessary - the CA uses templates that can ignore some of the data).
G
GR21, 2019-02-15 @GR21
All figured out. A CA issues a certificate without having a private key, which they don't need to issue a certificate. The following information is indicated in the certificate itself:
- To whom the certificate was issued
- By whom the certificate was issued
- When issued
- Validity period
- Public key owners
- Certificate signature
Thank you for the tips.
Similar questions
V
vitaliy22015-10-02 16:46:01
What will happen to the SSL certificate after the domain is released?
5Reply
D
R
C
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question