Week 2 - Cryptography Applications Flashcards
What is PKI (Public Key Infrastructure)?
a system that defines the creation, storage, and distribution of digital certificates
What is a digital signature?
a file that proves an entity owns a certain public key
What 3 things does a certificate contain?
- Info on Public Key
- Registered Owner
- Digital Signature
What does CA stand for?
Certificate Authority
What is a CA responsible for?
storing, issuing, and signing certificates
What does RA stand for?
Registration Authority
What is the RA responsible for?
verifying the identities of any entities requesting certificates to be signed and stored with the CA (certificate authority)
What does CRL stand for?
Certificate revocation list
What does a CRL list provide?
a list of certificates that are no longer valid (certificate revocation list)
What does the X.509 standard define?
defines the format of digital certificates
What are the fields are defined in a X.509 standard?
- Version
- Serial number
- Certificate signature algorithm
- Issuer name
- Validity
6.
Describe the
What are the 9 fields defined in a X.509 certificate?
- Version
- Serial number
- Certificate signature algorithm
- Issuer name
- Validity
- Subject
- Subject public key info
- Certificate signature algorithm
- Certificate signature value
What does CRL stand for?
Certificate Revocation List
What is a certificate revocation list (CRL)?
distributes a list of certificates that are no longer valid
What does the X.509 standard define?
defines the format of digital certificates
How does HTTPS protect us on the internet?
encapsulates the HTTP traffic over an encrypted secure channel using TLS or SSL
What does HTTPS stand for?
HyperText Transport Protocol (Secure)
What is HTTPS also called?
HTTP over SSL or TLS (what it uses to encapsulate traffic)
When was SSL 3.0 deprecated?
2015
What is TLS?
Provides a secure channel for an application to communicate with the service
(that’s independent of HTTPS but is used with it)