Certification authority: Difference between revisions
Jump to navigation
Jump to search
imported>Howard C. Berkowitz (New page: {{subpages}} In computer and communications security dependent on public key infrastructure (PKI), a '''certification authority (CA)''' is an organization, verifiably within that infra...) |
imported>Howard C. Berkowitz No edit summary |
||
Line 1: | Line 1: | ||
{{subpages}} | {{subpages}} | ||
In computer and communications security dependent on [[public key infrastructure]] (PKI), a '''certification authority (CA)''' is an organization, verifiably within that infrastructure, that has the administrative right and technical capablility to issue [[digital certificate]]s. It may delegate some of its management functions to a ''' | In computer and communications security dependent on [[public key infrastructure]] (PKI), a '''certification authority (CA)''' is an organization, verifiably within that infrastructure, that has the administrative right and technical capablility to issue [[digital certificate]]s. It may delegate some of its management functions to a '''registration authority (RA)'''. The CA, however, is the root of all trees of trust for certificates traceable to it. | ||
CAs may serve as a repository of certificates and certificate revocations. CAs may revoke certificates, making them a [[CRL issuer]]. | CAs may serve as a repository of certificates and certificate revocations. CAs may revoke certificates, making them a [[CRL issuer]]. |
Revision as of 18:59, 3 October 2008
In computer and communications security dependent on public key infrastructure (PKI), a certification authority (CA) is an organization, verifiably within that infrastructure, that has the administrative right and technical capablility to issue digital certificates. It may delegate some of its management functions to a registration authority (RA). The CA, however, is the root of all trees of trust for certificates traceable to it.
CAs may serve as a repository of certificates and certificate revocations. CAs may revoke certificates, making them a CRL issuer.