Collaborate Disseminate
For example, assume stackoverflow.com used a certificate issued by Google who is trusted. In the stackoverflow.com certificate, its own public key would be stored. However, is it also possible for Google’s public key to be stored in the sa… Continue reading Is it possible for the public key of the issuer to be stored in a subject’s certificate?
I have followed this and this video. Following is my understanding.
Before sending a request/response, sending-host (could be server or client) generates a pair of asymmetric cryptographic keys, then takes hash (called Digest) of the pack… Continue reading Is my understanding of Digital Certificates, Digital Signatures and their role in security of flowing traffic correct
I have recently figured out that Lets Encrypt provides "invalid" certificate chain in it’s certificates that are pointing to the root certificate that has expired a month ago (they did it apparently to support old android devices… Continue reading What happens if one certificate path is valid while the other one is not?
You can never be too careful when it comes to network and IoT security. With a rapidly growing number of disparate devices being connected to corporate and industrial infrastructures, it’s better to be safe than sorry. For network administrators it is … Continue reading Network and IoT security in a zero trust security model
Early this morning, I updated (with win-acme) the web server’s (IIS 8.5) SSL certificate due to the known problem of Let’s Encrypt with the expiration of the its root certificate (DST Root CA X3). So almost everything is fine and dandy wit… Continue reading Why does Chrome on Windows 7 still display the old root certificate?
Early this morning, I updated (with win-acme) the web server’s (IIS 8.5) SSL certificate due to the known problem of Let’s Encrypt with the expiration of the its root certificate (DST Root CA X3). So almost everything is fine and dandy wit… Continue reading Why does Chrome on Windows 7 still display the old root certificate?
I was wondering if the connection towards the ocsp responder/server is TLS encrytped itself. Meaning that the client requesting a validity check for a certificate verifies the OCSPs server certificate?
If so that OCSP server should be sign… Continue reading Is a OCSP request verified via TLS?
Someone is running an automated scan on our SSL setup and they insist that our root certificate be included in all the following CA stores:
"Mozilla NSS – 01/2014"
"Apple – OS X 10.9.2"
"Java 6 – Update 65"
&… Continue reading How can I find the list of certificates present in a set of CA stores
Imagine a web application in which two computers can communicate with each other by transferring files, through the server linked with some unique password.
Every file sent between the clients are sent through the server, means that the se… Continue reading How to prevent server know what data is being transferred through it between two clients
I just got a very phishy looking email from Vodafone. It had encoding errors and nothing more than my name in it. It asked me to confirm my email address and in order to do that I had to enter some contract details after clicking a link. I… Continue reading Do certificate issuers perform checks against homograph attack?