What is a Digital Certificate PDF Print E-mail


In the digital world, digital information should be protected against unauthorized access, use, disclosure, disruption, destruction or modification. The core principles that should be achieved on information security is Confidentiality, Integrity and Availability of digital information (also known as the CIA triad). When securing digital information, securing digital communication plays a major role because most of the time digital information is accessed through local networks or from the Internet where those information can be exposed to a third party.

Various methods have been introduced to secure digital communication such as OAuth, OpenID and Kerberos. The most secured scheme that has been developed so far is the Digital Certificate based approach.

A digital certificate is an electronic "credit card" that establishes your credentials when doing business, using email and other transactions on the Web. It is issued by a Certification Authority (CA). It contains your name, a serial number, expiration date, a copy of the certificate holder's public key (used for encrypting messages and digital signatures), and the digital signature of the certificate-issuing authority so that a recipient can verify that the certificate is real. Digital certificates conform to a standard, X.509. Digital certificates can be kept in directories or registries so that authenticating users can look up other users' public keys.