PKCS And X.509

Question 1

PKCS #7

Can be used to store multiple chain certs. Does not store private key.

Answer 1

Is the specific standard used for generation and verification of digital signatures and certificates managed by a PKI.
(This standard served as the basis for S/MIME secure/multipurpose internet mail extension)

Question 2

PKCS #10

Answer 2

Defines the format for certificate requests.

Question 3

PKCS #12 (PFX personal information exchange)

Answer 3

Provides a container for one or more certificates with/and private keys.

Commonly used to import/export certs and private keys on windows and Mac.

Question 4

X.509 certificates

Answer 4

Most common type of digital cert. Used for Website and Mail encryption. Issued by a trusted 3rd party or a Company.

Question 5

PGP and OpenPGP

Answer 5

2 other types of digital certs.
PGP is proprietary and owned by Symantec.

Question 6

PEM

Answer 6

Privacy Enhanced Mail is the most common type of X.509 cert format, used in Linux/Unix based systems.

PEM files usually seen with these extensions: .CRT, .PEM, .CER and .Key

Question 7

Thumbprint (generated with SHA1)

Answer 7

The field on an X.509 cert that displays the hash or digest.