A digital certificate is a unique electronic document that identifies an individual or organization. It uses public key infrastructure (PKI) to allow secure data exchange over the internet. A digital certificate contains a public key and is digitally signed by a certificate authority (CA) that verifies the identity of the requester. When user A sends a message to user B, user B can verify user A's certificate by checking the CA's digital signature on the certificate using the CA's public key. Digital certificates are important for secure communication, online banking, expanding e-commerce, and protecting against online threats. The major types are SSL certificates for servers, code signing certificates for software, and client certificates for identifying individuals.
2. What is Digital Certificate?
● A Digital certificate is a unique, digitally signed document which authoritatively
identifies the identity of an individual or organization.
● It is an electronic "password" that allows a person, organization to exchange
data securely over the Internet using the public key infrastructure (PKI),PKI
comprises of the technology to enables secure e-commerce and Internet
based communication.
● Digital Certificate is also known as a ‘Public key certificate’ or ‘Identity
certificate’.
3. Public Key Infrastructure:
Public-key cryptography,or asymmetric cryptography, is a cryptographic system
that uses pairs of keys: public keys which may be disseminated widely, and private
keys which are known only to the owner.
4. Why we need Digital Certificate
User A User B
User A User B
6. Certificate Authority
A certificate authority (CA) is a trusted entity that manages and issues security certificates
and public keys that are used for secure communication in a public network.
who verifies the information provided by a requester of a digital certificate. If the information
is verified as correct, the certificate authority can then issue a certificate.
7. How it Works?
signature User A
User A User B
User B
verifies
User A’s
Certificate
by
checking
CA’s
digital signature
using
CA’s
Public
Key
A
Send
Request to
CA
for
Certificate
CA
issue
Certificate
to
User A
User A Sends Message to User B
8. Process for obtain Digital Certificate
● Subscriber(Sender) generates a public/private key pair.Applies to CA for digital
certificate with public key.
● CA verifies sender's identity and issue digital certificate containing the public
key
● CA publishes certificate to public ,online repository.
● Repository reports status of subscriber(Sender) certificate
9. Types of Digital Certificate
There are main 3 types of Digital Certificate
1. Secure Socket Layer Certificate [SSL] Digi-SSL™
2. Software Signing [Code Signing Certificate] Digi-Code™
3. Client Certificate [Digital ID] Digi-ID™
10. 1. Secure Socket Layer Certificate [SSL] Digi-SSL™
Secure Socket Layer [SSL] server Certificates are installed on a server. This can
be a server that hosts a website like www.digi-sign.com, a mail server, a directory
or LDAP server, or any other type of server that needs to be authenticated, or that
wants to send and receive encrypted data.
11. 2. Software Signing [Code Signing Certificate]Digi-Code™
Code Signing Certificates are used to sign software or programmed code that is
downloaded over the Internet. It is the digital equivalent of the shrink-wrap or
hologram seal used in the real world to authenticate software and assure the user
it is genuine and actually comes from the software publisher that it claims.
12. 3. Client Certificate [Digital ID] Digi-ID™
Client Certificates or Digital IDs are used to identify one person to another, a
person to a device or gateway or one device to another device.
Two people communicating by email will used a client certificate to authenticate or
digitally sign their respective communications. This Signature will assure each
person that the email is genuine and comes from the other person.
14. Communication Security
A Millions and millions of emails are being transmitted over the web. However, for
crucial communication between various entities.
Digital Certificate is put to use to an electronic mail message for purposes linked to
security and to also verify the identity of the senders.
15. Online Banking
Online banking would not have been a possibility and a safe and secure medium
to transact over the internet. had Digital Certificate not been put in place
provided by expert third-party imminent Certificate Authorities (CA).
16. Expanding e-Commerce
Millions of people are shopping on various websites over the web SSL(Secure
Sockets Layer) certificate’s sign on such online platforms is a guarantee that they
are safe and could be relied upon for online shopping.
17. To Keep Away Online Threats
To keep away the increasing security concerns of online fraud and identity theft, a
Digital Certificate based third-party certification can reassure endless internet users
and casual browsers.
18. Importance Key Points
1.) It keeps safe your site from digital threats
2.) It is an essential part of secure communication
3.)It provides a high level of security for online banking
4.) It enables secure e-commerce and web-based
communication.
19. Agencies for Digital Certificate
● www.e-digitalsignature.com
● www.certif-id.com
● www.cca.gov.in
● www.mca.gov.in
● www.engageblack.com
● www.e-mudhra.com