8 X.509 Certificates and PKI

In this chapter, we will learn about X.509 certificates. Certificates are data structures used for identity presentation and verification. X.509 certificates are crucial for the functioning of TLS and TLS-based protocols, such as HTTPS, where certificates are used to prove the identities of websites. Certificates are also used in secure messaging standards, such as S/MIME; VPN solutions, such as OpenVPN; smart cards, software signing, and so on. X.509 certificates can also optionally be used in IPsec.

We will learn about what certificates consist of, how certificate verification chains are built, and how Public Key Infrastructure (PKI) works. In the practical part of this chapter, we will learn how to generate certificates ...

Get Demystifying Cryptography with OpenSSL 3.0 now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Demystifying Cryptography with OpenSSL 3.0 by Alexei Khlebnikov

8

X.509 Certificates and PKI

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly