OpenSSL附带了一组可信任证书。
因此,要信任一个证书,用户只需要信任证书权威即可。
Thus to trust the certificate, the user only needs to trust the certificate authority.
设备告诉我证书已经安装,但显然它不信任证书。
The device tells me that the certificate has been installed, but apparently it does not trust the certificate.
在创建上下文结构之后,必须加载一个可信任证书库。
After the context structure is created, a trust certificate store must be loaded.
用户通过拥有并使用CA的信任证书来表明自己对认证权威的信任。
The user signifies trust in the certificate authority by possessing and using the ca's trust certificate.
在打开时,您可以创建、修改和删除私钥和受信任证书项。
When opened, you can create, modify, and delete private key and trusted certificate entries.
要检验证书是可信任的,需要在连接建立之前提前加载一个可信任证书库。
Verifying that the certificate is trusted requires that a trust certificate store be loaded prior to establishing the connection.
遗憾的是,仍有可能接纳持有由任何缺省的受信任证书颁发机构颁发的证书的任何人。
Unfortunately, it potentially still admits anyone holding a certificate issued by any of the default trusted certificate authorities.
将此CA指定为受信任证书颁发机构的客户机随时接受CA颁发的任何证书。
The clients that designate this ca as trusted will readily accept any certificates issued by the ca.
在提供了您的用户信任证书之后,您就可以针对应用程序的测试执行相应的命令。
After supplying your user credentials, you can perform actions against the application under test.
如果旧解决方案是用受信任证书签名的,请使用同一证书对更新的解决方案进行签名。
If the old solution is signed with a trusted certificate, sign the updated solution with the same certificate.
在握手过程中,服务器向客户机发送一个证书,然后,客户机根据一组可信任证书来核实该证书。
During the handshake, the server sends a certificate to the client, which the client then verifies against a set of trust certificates.
例如,如果由于没有加载所保存的信任证书,而不能对信任证书进行验证,那么是否继续进行通信,就完全取决于开发者了。
For example, if the trust cannot be verified because a trust certificate store has not been loaded, then whether to continue with the communication is strictly up to the developer.
这种证书都是由那些被信任的公司颁发的,而且为多个站点建立信任网,可是这类办法信任证书的公司却可以被黑客攻击。
Certificates are issued by companies that are trusted, and a "web of trust" is set up for multiple sites. But those companies can be attacked by hackers.
这个回调也会与PLAM在客户机的运行库中进行交互,从而获取PAC标识符;这与从用户的信任证书缓存中获取认证服务令牌不同。
This callback, apart from retrieving the authentication service ticket from the user's credential cache, also interacts with PLAM in the client's runtime to fetch the PAC identifier.
您将被询问是否可以信任该证书。
在这种情况中,信任链和证书中的通用名可以防止中间人攻击的发生。
This is where the chain of trust and the common name on a certificate can prevent this from occurring.
如果访问完全基于自签名证书,则从信任存储区中删除证书的公钥将撤销其访问权。
If access is based entirely on self-signed certificates, deleting the public key of a certificate from the trust store revokes its access.
当将JSSE用于SSL通信时,需要在本地存储中维护一套信任的签名者的证书,由此得名信任库。
When using JSSE for SSL communication, one needs to maintain the set of trusted signer certificates in a local store, hence the name truststore.
浏览器将打开一个对话框,可让您将CA的证书添加为受信任的证书颁发机构(图14)。
The browser will open a dialog that enables you to add the ca's certificate as a trusted Certification Authority (Figure 14).
信任存储库——受信任的证书条目:这种类型的条目包含单个属于另一方的PKC。
Truststores — trusted certificate entry: This type of entry contains a single PKC belonging to another party.
由于客户机信任它拥有的任何证书(在本例中包括ca证书),所以它信任CA签署的证书。
Since the client trusts any signing certificate it has (which in this case includes the ca certificate), it trusts certificates that the ca has signed.
注意,第一次连接时,您的浏览器可能会提醒您使用了一个未被信任的证书,因为您生成了自己的证书。
Note that the first time you connect, your browser is likely to complain about an untrusted certificate, because you generated your certificate yourself.
由于客户端信任它拥有的任何证书(在本例中包含ca证书),所以它信任CA签署的证书。
Since the client trusts any certificate it has (which in this case includes the ca certificate), it trusts certificates that the ca has signed.
自签名证书的信任存储区项与一个且仅与一个证书匹配。
The trust store entry for a self-signed certificate matches one and only one certificate.
例如,失败的信任验证可能只是意味着没有可信任的证书。
For example, a failed trust verification could simply mean that the trust certificate is not available.
对于这种策略配置,客户机证书需要受此STS信任,且此STS证书必须存在于此客户机的可信存储内。
With this policy configuration, the client certificate needs to be trusted by the STS, and the STS certificate must be present in the trust store of the client.
信任一个证书颁发机构并不等于信任该CA颁发的所有证书。
Trusting a certificate authority does not equate to trusting all of the certificates issued by that ca.
这些凭据是否可信取决于客户机是否信任对证书进行数字签名的证书颁发机构。
Whether or not these credentials can be trusted will depend on whether or not the client can trust the certificate authority that digitally signed the certificate.
这些凭据是否可信取决于客户机是否信任对证书进行数字签名的证书颁发机构。
Whether or not these credentials can be trusted will depend on whether or not the client can trust the certificate authority that digitally signed the certificate.
应用推荐