X509

From WikiWiki
Jump to navigation Jump to search

some x509 notes

https://tools.ietf.org/html/rfc5280


selfsigned root

Authority Key Identifier == Subject Key Identifier subject == issuer


signature

4.1.1.3. signatureValue 

  The signatureValue field contains a digital signature computed upon
  the ASN.1 DER encoded tbsCertificate.  The ASN.1 DER encoded
  tbsCertificate is used as the input to the signature function

Signature = signed hash of tbsCertificate (to be signed)

Signature algorithms are always used in conjunction with a one-way hash function. The data to be signed (e.g., the one-way hash function output value) is formatted for the signature algorithm to be used. Then, a private key operation (e.g., RSA encryption) is performed to generate the signature value.

Retrieved from "https://mendelonline.be/wiki/index.php?title=X509&oldid=541"