Please enable JavaScript.
Coggle requires JavaScript to display documents.
website development 2 (digital certificate (A digital certificate is also…
website development 2
digital certificate
-
-
Companies or individuals requiring digital certificates apply to a trusted third party called a Certificate Authority (CA), a company which provides online certification.
-
The CA provides an encrypted digital certificate which contains, among other things, the user’s public key.
This connects an individual or website with a particular public key therefore the trusted third party verifies their identity.
When a company asks for a certificate, they have to give information about the web server and the location of the company.
-
-
-
encryption
Encryption is a method of providing security for data both when it is stored electronically and whilst it is being transmitted.
-
-
The data must be decrypted using a key, so that it can be understood.
Some systems use the same key for encryption and decryption, particularly if the number of users is small.
example
If user A wants to send an encrypted message to user B, user A will encrypt the data using user B’s Public Key.
-
Therefore, if a third party accesses the encrypted data, they will not be able to read or decrypt it as they do not have the Private Key.
The Public Key is available to anyone so, it is possible that a forged message could be sent to user B.
In order to prevent this, digital signatures are used.
public and private key
Public key cryptography uses two different keys, one for encrypting the data and a different one for decrypting the data.
-
The Public Key is available to everyone but the Private Key is confidential and specific to a particular receiver.
The key pair is mathematically related, so, whatever is encrypted with a Public Key may only be decrypted by its corresponding Private Key and vice versa.
digital signature
-
-
-
After ensuring the validity of the signature, the receiver then retrieves the data through decryption using his/her own Private Key.
All data transmitted across HTTP connections are in ‘plain text’ and can be read by any individual who can hack into the connection between a browser and a website.
A page displaying https:// at the beginning of the web address will make use of encryption to secure data transmission
SSL instantly encrypts plain text like credit card numbers into data that only the user and website can decrypt.