The generation and verification process of the digital certificate for decrypting the TLS protocol - Code World

The generation and verification process of the digital certificate for decrypting the TLS protocol

Enterprise 2023-06-22 00:35:51 views: null

This article will explain the concepts and processes of digital certificates, signatures, verification, asymmetric encryption and symmetric encryption in the TLS protocol, as a section of my column "Quick Start Tutorial for Computer Network Protocols".

Certificate & Root Certificate

The function of a digital certificate is to prove the identity of an asset. For example, the digital certificate in the TLS protocol is often used to prove the identity of the server, as shown in Figure 1 below: Figure 1 is a certificate issued to
insert image description here
blog.csdn.net
, used To indicate that the service corresponding to blog.csdn.net is communicating. The issuer of the certificate is rapidSSL and is valid for one year. According to the certificate path, the issuer of CA rapidSSL is DigiCert, as shown in Figure 2:

insert image description here
Figure 2
We know from Figure 2 that DigiCert is the root certificate, and the user and issuer of the root certificate are both themselves. The root certificate is very important in the entire certificate inspection system, so it is usually preset in the operating system or browser in advance. Check the root certificate in Windows, as shown in Figure 3: Figure 3 should always check
insert image description here
your
updated certificate list to see if there are suspicious root certificates. If an untrusted certificate is imported into the root certificate list, it will cause some security problems, such as man-in-the-middle attacks.

Certificate Field Meaning

The picture below is a blog.

Guess you like

Origin blog.csdn.net/javajiawei/article/details/125956025

The generation and verification process of the digital certificate for decrypting the TLS protocol

SSL / TLS protocol detailed (in) - Certificate Authority

SSL certificate generation whole process

C#/.Net crawler request.GetResponse() error: The underlying connection has been closed: Failed to establish a trust relationship for the SSL/TLS secure channel/according to the verification process, the remote certificate is invalid

TLS protocol

【TLS protocol】

Java digital certificate for file/encryption/decryption/signature/verification signature

Security Protocol-TLS Handshake Process Detailed Explanation

Study Notes | An article takes you through the entire process of the TLS protocol

Detailed explanation of HTTPS encryption protocol: TLS/SSL handshake process

iOS push certificate to generate pem file (detailed generation process)

HTTPS protocol and TLS protocol

Nginx installs SSL certificate and configures the whole process of HTTPS protocol

Remote management channel secure SSH protocol host verification process

grpc TLS certificate validation

Create TLS certificate and key

npm tls certificate error

And how to make the whole process of applying a digital signature certificate under windows

Translation: Decrypting the Persistent Generation of Java Out of Memory

On the digital certificate

ios certificate generation, ios certificate online generation

TLS handshake error : : tls: bad certificate

TLS/SSL protocol

Graphical SSL/TLS Protocol

Introduction to TLS protocol

Understand the openssl protocol: what the hell are x509, crt, cer, key, csr, ssl, tls? How to issue a certificate to your website?

Certificate verification methods and sites

mavenSSL certificate verification problem

kubernetes kubectl signed TLS certificate

Apache https certificate generation

Recommended

Ranking

vue project automated build tools 1.0, support for multi-page build

JDBC add, update, delete data

SpringCloud combat service in response to the decline tutorial series (Chapter IV)

A segmentation fault (core dumped) error occurs when C+11 compiles and calls the PCL library

Django achieve websocket

Go语言并发之道--笔记1

Three-tier structure and application

Zhejiang data structure after-school exercise practice two 7-2 Reversing Linked List (25 points)

Front-end interview brushing day9 (updated daily high-frequency inspection points for front-end interviews)

The difference between the shell of the single and double quote

Daily

More

2024-05-02(0)

2024-05-01(4)

2024-04-30(36)

2024-04-29(5)

2024-04-28(12)

2024-04-27(29)

2024-04-26(22)

2024-04-25(32)

2024-04-24(30)

2024-04-23(30)