But, before creating a profile, you need to generate a user certificate.
不过,在您创建配置文件之前,需要先生成一个用户证书。
Later, a generated user certificate will be mailed to the E-mail id provided.
随后,它将把生成的用户证书发送到所提供的电子邮件地址。
Each user profile created is strongly encrypted with the personal user certificate, which ACTS as a master key.
每个用户配置文件都使用用户证书进行加密,该证书充当一个主密匙。
For the current security features of 3g, an issuing process of user certificate based on 3g security access mechanism AKA is put forward.
针对3g现有安全特点,提出了基于3g安全接入机制AKA的用户证书颁发过程。
But if a valid certificate can be obtained, neither the user nor the browser have any idea that they have been hijacked.
但是,如果可以获得一份有效的证书,无论是用户还是浏览器都不会有被劫持的想法。
You then have to save the certificate from the E-mail client and complete the user profile creation process.
然后,您必须从电子邮件客户端保存该证书,并完成用户配置文件创建过程。
This effectively disables J2EE security context generation, which frees us from having to use a valid user name in the client certificate.
这将有效地禁止生成j2ee安全上下文,从而使我们不必在客户机证书中使用有效的用户名。
Second, if client certificates are to be used, the DN in the client certificate may have to map to a real user in a user registry used by the server.
第二个问题是,如果使用客户机证书,客户机证书中的DN可能必须映射到服务器使用的用户注册表中的一个真正的用户。
You can use basic user authentication or a digital certificate for this purpose.
您可以使用基本用户身份验证或者数字证书来实现此目的。
Thereafter, whenever the user wants to access any DCE service, it asks the security server for a security certificate.
在这之后,只要用户希望访问任何DCE服务,它就会向安全服务器获取一个安全证书。
Retrieving the peer certificate is necessary if you wish to either display it to the user or verify it either against the host name or the certificate authority.
如果您希望向用户显示证书的内容,或者要根据主机名或证书权威对证书进行验证,那么就需要检索证书的内容。
The user signifies trust in the certificate authority by possessing and using the ca's trust certificate.
用户通过拥有并使用CA的信任证书来表明自己对认证权威的信任。
Note that while both tools allow the user to generate self-signed certificates, neither tool allows the user to sign a certificate.
请注意,虽然两个工具都允许用户生成自签署的证书,但是它们都不允许用户签署证书。
The identity asserted on the sending side takes the form of the original credentials provided for the initial login (for example, user ID, DN, certificate).
发送端断言的标识采用为初始登录(例如,用户ID、DN、证书)提供的原始凭据的形式。
If the user loses the certificate or the certificate is stolen, hackers can access this information without being challenged for authentication.
如果用户的证书丢失或被盗,黑客就能够访问信息而不用经过身份验证。
But if the partner is remote, then CICS does not directly trust the partner to assert unauthenticated user IDs unless it identifies itself with a trusted digital certificate.
但是如果伙伴系统位于远程端,CICS则不直接委托合作伙伴声明未经身份验证的用户ID,除非它使用受信任的数字证书进行自我标识。
The server takes the call and examines the certificate and decides whether the user is authorized to enjoy this service.
该服务器接收调用并检查证书,然后判断用户是否被授权使用此服务。
When a user visits such sites, they are relying upon certificate Authorities (CAs), hundreds of companies that sign the certificates that supposedly guarantee secure browsing.
当用户访问这样的网址,他们依赖认证权威(CA),这是数百个公司签署的证书来保证安全浏览。
What process will be used to bind the user to the certificate?
把用户绑定到证书采用什么样的过程?
You can control the binding of the user to the certificate.
您可以控制用户到证书的绑定。
This certificate ACTS as a credential of the user to prove its authenticity to any machine in the network.
此证书用作用户向网络中任何机器证明其真实性的凭证。
You control the binding of the user to the certificate.
您控制用户和证书的绑定。
In an SSL application, an SSL certificate must match the requested URL by the user or a warning message will pop up saying that the request URL does not match the domain name of the SSL certificate.
在SSL应用程序中,SSL证书必须与用户请求的URL匹配,否则会弹出一个警告消息,指出所请求的url与ssl证书的域名不匹配。
A digital certificate is a file that binds a public cryptographic key with an identity (a user or an organization).
数字证书是一个文件,它绑定了一个带识别码的公用密钥(一个用户或者一个组织)。
You can't just use encryption; you must have a certificate of identification, and if the user doesn't recognize the authority that signed your certificate, dire warnings are presented.
不能只使用加密;您必须有一个身份证书,如果用户不信任签署证书的机构,浏览器就会发出警告。
To achieve this, you publish policies asserting that the client runtime must ensure message confidentiality and must provide evidence of the user's identity (user ID/password or a certificate).
要支持各种客户机运行时,请发布断言客户机运行时必须确保消息机密性,并必须提供用户身份的证据(用户ID/密码或证书)的策略。
The user then passes the certificate to the server which is hosting the DCE service required by the user.
用户然后将凭证传送给承载用户所需DCE服务的服务器。
If X.509 Certificate is selected, the SSL is required and the user name is retrieved from the defined identity token location.
如果选择了X . 509Certificate,则需要SSL,用户名将从所定义的身份标识位置处检索。
This can be done by the user supplying an x.509 certificate to the Web site.
可以通过用户向站点提供x . 509证书来实现这种身份验证。
Figure7. Mozilla informing the user that the certificate is specifying a hostname different from the hostname that the browser is expecting.
图7.Mozilla通知用户证书中指定的主机名与浏览器期望的主机名不相符。
应用推荐