• Register

What is a certificate authority? Why do we need them?

0 votes
509 views
Who are these companies that issue ssl certificate? What makes them so special that I should trust them and their certificates? Are they audited? PLeas explain.
asked Nov 3, 2012 in SSL Certificates by Jason Moran (820 points)
    

1 Answer

+1 vote

 

Certificate Authority (CA) is an organization that is trusted to sign digital certificates. CA verifies identity and legitimacy of company or individual that requested a certificate and if the verification is successful, CA issues signed certificate.

When server presents certificate to client (for example, your web browser) during SSL handshake, client will attempt to verify signature against a list of ‘known good’ signers. Web browsers normally come with lists of CAs that they will implicitly trust to identify hosts. If the authority is not in the list, as with some sites that sign their own certificates, the browser will alert the user that the certificate is not signed by a recognized authority and ask the user if they wish to continue communications with unverified site.

Comodo, GeoTrust and VeriSign Certificate Authorities are recognized by 99% of web browsers. This is the guarantee that browsers will not show any security errors when connecting to the site secured by Comodo, GeoTrust, or VeriSign.

answered Mar 14, 2013 by jimarmstrong (430 points)

Related questions

0 votes
1 answer 1,359 views
+2 votes
1 answer 356 views
0 votes
1 answer 6,505 views
0 votes
3 answers 1,628 views
1,628 views asked Dec 13, 2012 in SSL Certificates by jameswilliam1 (250 points)
...