In either case, you can code up a row of the ca as a binary number.
不管是哪种情况,都可以将CA的一行作为二进制数相加。
The first step toward using a certificate issued by any ca is to designate that ca as a trusted third party.
要使用任意CA颁发的证书,第一步是将该CA指定为受信任的第三方。
Unfortunately, to create a certificate someone (or something) needs to touch the ca and to act as a certifier.
不幸的是,创建一个证书需要某个人(或某些东西)作为证明者和ca接触。
Figure 1 shows the basic process of creating a certificate using a ca and distributing it, in this case, to perform server authentication with SSL.
图1中显示了使用CA创建证书和分发的基本流程,对于本例,用于通过SSL执行服务器身份验证。
Server.crt (which must be signed by a CA).
crt(必须由ca签发)。
In other words, adding a ca to a keyring establishes a trust policy for every certificate that ca has ever signed or will sign in the future.
换句话说,对一个密匙环添加一个CA将对那个CA已经签名的或未来即将签名的每个证书建立一个信任策略。
Also, in some environments, you can request a ca to generate a ca certificate for a self-signed certificate, which validates and resigns the previously generated certificate.
而且,在某些环境中,您可以请求CA为自签署的证书生成一张ca证书,这就确认并再签署了以前生成的证书。
And even if the CA file has a password, this information could leak out as your administrators leave and move on to other companies.
虽然CA文件有口令,但是口令也可能在您的管理员离开或者跳槽到其他公司时而泄露出去。
After the external ca issues a certificate, it sends a reply that will typically be a PKCS7 encoded certificate.
在外部CA颁发证书之后,它将发送一个回复,该回复通常是一个PKCS7编码的证书。
The certification chain defines the hierarchy of approving certification Authorities, and provides a list of ca certificates required to approve a given personal certificate.
证明链定义了批准认证中心的层次,并且提供了批准一张给定的个人证书所需的ca证书列表。
It is a very simple tool that creates key stores, generates self-signed certificates, imports and exports keys, and generates certificate requests for a ca.
这是一个非常简单的工具,用于创建密钥存储库、生成自签署证书、导入和导出密钥,以及为ca生成证书请求。
Mind that self-signed certificates are considered bad practice for production servers and certificates signed by a CA should be used instead.
要记住,对于生产服务器,使用自签署的证书是不好的做法,应该使用由CA签署的证书。
It is suggested though to replace the default certificates by certificates signed by a commercial ca for production use.
但是,对于生产环境,建议把默认的证书替换为由商业CA签署的证书。
However, a one-dimensional CA has no right-most (or left-most) cell.
不过,一个一维ca没有最右(或者最左)细胞。
Why a CA can often sound more gnarly than it looks is a topic for a whole other article.
需要完整的另一篇文章来说明为什么CA听起来比看起来通常更不规则 。
Now, consider a rule 150 CA that starts out with all white cells, except for a single black cell in the center.
现在,考虑一个150规则CA,开始时,除了中间的细胞为黑色,其他所有细胞都是白色。
This component lets you view composite application (ca) XML files in a graphical user interface.
通过该组件可以在图形用户界面中查看复合应用程序(CA)XML文件。
A digital certificate is issued by a trusted authority (a certificate authority or ca) and is issued only for a limited time.
数字证书由受信任机构(认证机构或CA)发布,并且限制了使用期限。
The major disadvantage to a closed ca system is the fact that because you are the ca, you need a support structure to handle this responsibility.
封闭ca系统的主要缺点是,因为您就是CA,所以需要一个支持结构来处理这种职责。
Rule 150 generates some interesting tunes when you use sound to represent a CA, so I'll use it as an example throughout this article.
用音乐表示CA时,150规则会生成一些有意思的曲调,因此在本文中我将用它作为例子。
This due diligence on the part of the ca provides a basis to trust the identity bound to the certificate.
ca部分的这些前期工作提供了信任绑定到该证书的标识的基础。
When you interpret a CA row as a binary number mod 128, you're effectively only looking at 7 digits or cells of the row.
在将ca行解释为二进制数的128模数时,实际上只用到了一行中的7个数或者单元。
Self-signed certificates can be useful for test environments because you can generate them locally and you do not have to pay fees to a CA.
自签署的证书会对测试环境有帮助,因为您可以从本地生成这些证书,且无需向 CA付费。
When a ca revokes a certificate, the action is published to a CRL.
当一个ca撤销一个证书时,撤销操作被发布给CRL。
Any new certificate issued by the ca with a matching DN value will be able to connect.
CA发出的带有匹配dn值的任何新的证书都能够进行连接。
Server-side considerations: We'll be configuring the server to expect a client certificate issued by a trusted CA.
服务器端需要考虑的事项:我们要将服务器配置为需要受信任的 CA颁发的客户机证书。
When the ca USES a self-signed certificate, called a Root ca, the ca usually publishes its self-signed certificate details publicly so that users can establish the authenticity of the ca.
当CA使用自签名证书时(称为根ca),该ca通常公开发布其自签名证书详细信息,因此用户可以确定该CA的真实性。
Instead of simply sending its public key to the receiver, the sender sends its digital certificate issued by a ca.
发送方发送由CA签发的数字证书,而不仅仅是向接收方发送其公钥。
To show trust, a digital certificate is signed by a Certificate Authority (CA).
为了显示信任关系,数字证书可以由认证权威(CA)机构进行签名。
Even though you are not the ca, you can set up a service via a public ca to provide certificates on your behalf.
尽管您不是CA,都可以通过公共CA建立服务以提供代表您的证书。
应用推荐