Collaborate Disseminate
I’m having a friendly debate with a co-worker as to the meaning of “self-signed” when it comes to PKI. We have an internal root and subordinate CA in our organization. We import the cert chain on internal clients to allow for the trust o… Continue reading Technical description of a self-signed certificate
I recently found out that in order to log on to the web-based administration tool on my ISP-provided router, I need to accept a self-signed certificate it offers. I did a bit of reading and it sounds like self-signed certific… Continue reading Is a self-signed certificate from my ISP-provided router a security threat?
There is an embedded device which should connect to the server over HTTPS and MQTTS. A server certificate is issued by a trusted CA (for example, Let’s Encrypt). But there is a problem with server certificate verification on the client sid… Continue reading Trusted CA SSL certificates and embedded devices
I have a mTLS (client authentication) setup where client sends a self-signed certificate. This self-signed certificate is transferred to and trusted by the server. The server’s certificate is signed by Let’s encrypt and Let’s… Continue reading How does server validate that self-signed certificate came from the client who self-signed the certificate in mutual TLS?
According to Why are self signed certificates not trusted and is there a way to make them trusted?, to trust a self-signed certificate we need to import the root certificate into the trust store of the browser. Does that mean… Continue reading How to Trust a Self-Signed Certificate
I setup an internal Root CA with another Intermediate CA, which will issue and sign the certificates for other internal servers.
When I did the “openssl s_client -connect :443”
it shows the error message that “Self Signed C… Continue reading Self Signed Certificate in Certificate of Chain
Would encryption still be applied on communication with devices using self-signed certificates if you ignore the warning and proceed without installing the certificate? Would you need to install it to ensure encryption or wil… Continue reading Is encryption still applied if you ignore the SSL certificate warning for self-signed certs?
I generated a certificate using ssl by running the script from the following link: https://gist.github.com/bjanderson/075fadfccdd12623ab935e57eff58eb4
The script ran just fine and I received all the expected files. I’ve impo… Continue reading Self signed ssl I created for localhost cannot be trusted even though I have already imported it to chrome
I have two applications (.net) on two web-servers.
The first application will need to do a request (via WebClient) to the second and get results.
I need to ensure Encryption, data integrity, and authentication.
Let’s say I create a self … Continue reading .Net WebClient – self signed certificate
First of all, some background of what is proposed:
The client’s browser initialises request
The request is resolved by public DNS (CNAME) to Akamai Edge
The request is processed by Akamai accordingly
Connection established … Continue reading Usage of a self-signed certificate between Akamai and Azure