客户端不持有证书,因此对SSL是匿名的。
The client does not have a certificate and is, therefore, anonymous to SSL.
因为这是使用非对象加密技术,而每一端有自己的证书和私有密钥,比起清单5对称加密技术示例,它处理起来更为简单。
Because this is using asymmetric encryption, where each side has its own certificate and private key, it should be somewhat simpler to handle than the Listing 5 symmetric-encryption example.
如果您使用证书来对客户端进行身份验证,为了减低这种风险,您应该减少信任存储库中签署者的数量以尽可能减少证书数。
If you are using certificates for client authentication, to reduce this risk, you should reduce the number of signers in the trust store to the minimum number possible.
请注意,在前面涉及客户端身份验证的场景中,客户端提供一个证书,然后服务器针对受信任的证书集对其进行检验。
Notice that in the previous scenario involving client authentication, the client presents a certificate that is validated by the server against the set of trusted certificates.
要使用这个特性,需要在连接的两端都配置ssl,其中包括生成一对密钥和一个数字证书。
Making use of this feature requires that both ends of the connection have SSL configured, which involves generating a pair of keys and a digital certificate.
颁发的客户端证书的有效期通常是一年,不过,CA对有效期可能有自己的规定。
Client certificates are typically issued with a validity period of one year, however, the ca may have its own constraints on the validity period.
特别地,客户端证书对请求提供了较严格的客户端身份验证和较严格的签名保证。
In particular, client certificates provide strong client identity verification and strong signature guarantees on requests.
当服务器对客户端进行应答时,进行加密处理时需要引用那个证书。
When the server replies to the client, it needs to reference that same certificate from the client as used in the encryption processing.
要从服务器对客户端进行身份验证,需要创建一个keyring和证书。
To authenticate servers to clients, you need to create a keyring and certificates.
缺少IP混淆和对客户端数字证书的支持,限制了我使用RationalPerformance Tester为一些类型应用程序类型进行性能测试。
The absence of IP aliasing and support for client-side digital certificates have kept me from using Rational performance Tester for some of the types of applications I typically performance test.
用户端的应用程序使证书的应用对用户透明。
The application program makes the use of certificate transparent for user.
由服务器调用以开始一个异步操作,该操作使用指定的证书、要求和安全协议对服务器和客户端(可选)进行身份验证。
Called by servers to begin an asynchronous operation to authenticate the server and optionally the client using the specified certificates, requirements and security protocol.
对于使用基于证书的消息安全的绑定,此证书用于加密发送给服务的消息,并期望服务用它来对客户端的应答进行签名。
For bindings that use certificate-based message security, this certificate is used to encrypt messages to the service and is expected to be used by the service for signing replies to the client.
对于使用基于证书的消息安全的绑定,此证书用于加密发送给服务的消息,并期望服务用它来对客户端的应答进行签名。
For bindings that use certificate-based message security, this certificate is used to encrypt messages to the service and is expected to be used by the service for signing replies to the client.
应用推荐