Collaborate Disseminate
I know that similar questions has been asked several times, but this question focuses on one aspect I did not found answered yet.
Recently when I was connecting my iPhone to my school wifi (eduroam), it asked me to trust a wifi certificate… Continue reading How to distinguish between Wifi certificate and certificate usable for MITM?
Trust anchors and (root) certificates authorities are often used interchangeably and it’s easy to think that they are the same thing. The answer in Can an intermediate CA be trusted like a self-signed root CA? contains some nice discussion… Continue reading Difference between trust anchors and certificate authorities
openssl verify can be executed with both flag -CAfile <FILE> and -trusted <FILE>. The explanations from OpenSSL 1.1.1 manual:
-CAfile <FILE>
A file of trusted certificates. The file should contain one or more certificates… Continue reading Difference between -CAfile and -trusted in OpenSSL verify
I have a web server running on an IoT device, more specifically, on an ESP32.
This web server serves a website that is used for managing the device and can contain some sensitive information, hence I need to serve the website using HTTPS. … Continue reading How can I make an SSL certificate for an IoT device trusted on all browsers?
For a Windows 7 Home Premium box that does not have internet or network (LAN/WAN) access, how can one update the machine’s list of valid and revoked security certificates?
A non-connected device (no devices are connected to the Windows 7 b… Continue reading How to update certificates and certificate revocation lists on a Windows 7 box that does not have any networking? [migrated]
In my application I’ve successfully implemented client authentication using X509 certificates
Here’s what I’ve done:
Issued a self-signed CA root certificate with a private key
Issued a web-server certificate with a private key and signed… Continue reading Client authentication using X509 certificates behind the scenes
Is it possible to use Private Certificate Authority based on Microsoft Windows Servers for protection SSL/TLS connections in FedRAMP environment on Google Cloud?
Continue reading Google Cloud and Private CM on Microsoft Windows and FedRamp compliance for TLS
Say I create a certificate with some content and then sign it with my private key. Now, I decrypt the sign with a trusted CA’s public key and somehow come up with content that can match the decrypted value and use this content to replace … Continue reading create a fake ssl certificate
when I visit "https://www.ebay.co.uk", I can see a trust seal at the bottom right of the page that says the certificate is issued by DigiCert. It is a clickable trust seal, so when I click on it, it takes me to the DigiCert websi… Continue reading SSL Trust Seal of "https://www.ebay.co.uk"
I created TLS via AWS private CA and cert-manager then set it in Kubernetes from this blog:
TLS-enabled Kubernetes clusters with ACM Private CA and Amazon EKS
In this way we can access the application service via self-signed CA(PCA) but th… Continue reading How to create a TLS-enabled Kubernetes service with AWS ACM/PCA for a common application?