notes blog about

2011-09-16 (migrated from wiki.reisinge.net/PKI on 2022-05-10)

What and why

Public Key Infrastructure (PKI)

The value of CA:

Components

Certificate authority (CA) - collection of HW, SW and people operating it

Registration authority (RA) - trusted by CA to register or vouch [ručiť] for the identity of users

Certificates - digitally signed collection of information (2-4 KB)

Repository - DB of active digital certificates for CA system

Certificate revocation list (CRL) - certificate may be revoked [zrušiť, odobrať] because:

Sources and more