Brandon G. answered • 12/07/20
Tutor
New to Wyzant
IT Professional with over 10 years of experience
Hi Sarah,
To help answer this question, I'm going to break down what a public key certificate is...
A public key certificate contains several fields, including:
- Issuer - The issuer is the Certificate Authority (CA) that issued the certificate. If a user trusts the CA that issues a certificate, and if the certificate is valid, the user can trust the certificate.
- Period of Validity - A certificate has an expiration date, and this date is one piece of information that should be checked when verifying the validity of a certificate.
- Subject - The subject field includes information about the entity that the certificate represents.
- Subject's public key - The primary piece of information that the certificate provides is the subject's public key. All the other fields are provided to ensure the validity of this key.
- Signature - The certificate is digitally signed by the CA that issued the certificate. The signature is created using the CA's private key and ensures the validity of the certificate. Because only the certificate is signed, not the data sent in the SSL transaction, SSL does not provide for non-repudiation (a sender denying that they sent the data).
