Digital Signatures & Certificates Flashcards
What is the Digital Security Standard?
Relies upon a 160-bit message digest created by the digital security algorithm
What is Hashing?
One way cryptographic input and produces a unique message digest as its output
What is a Wildcard Certificate?
Allows multiple subdomains to use the same certificate
What is the Subject Alternate Name (SAN Field)?
Certificate that specifies what additional domains and IP addresses are going to be supported
What are Single-Sided and Dual-Sided Certificates?
Single-Sided: Only requires the server to be validated
Dual Sided: Requires both the server and user to be validated
What is a Self-Signed Certificate?
Digital certificate that is signed by the same entity whose identity it certifies
What is a Third-Party Certificate?
Digital certificate issued and signed by trusted Certificate Authorities (CAs)
What is the Root Of Trust?
Highest level of trust in certificate validation
Who is the Certificate Authority?
Trusted third party who issues digital certificates
What is the Registration Authority?
They request information from the user, forward that to the CA to create the digital certificate
What is the Certificate Signing Request (CSR)?
A block of encoded text that contains information about the entity requesting the certificate
What is the Certificate Revocation List (CRL)?
List of digital certificates that the Certificate Authority (CA) has already revoked
What is the Online Certificate Status Protocol (OCSP)
Shows the revocation status of a digital certificate with a serial number
What is OCSP Stapling?
Alternative to OCSP
Allows the certificate holder to get the OCSP record from the server at regular intervals
What is Public Key Pinning?
Allows an HTTPS website to resist impersonation attacks from users who are trying to present fraudulent certificates