What is a digital certificate?
A digital certificate is used to share the public key of a user. It contains information on the public key, the owner of the public key, the expiration date of the public key, and the digital signature of a trusted authority.
A digital certificate is used to address a significant caveat in digital signatures. Digital signatures rely on the fact that the receiver has the public key of the authentic sender. But what if a hacker steps in and swaps his public key with the sender’s public key while the sender is sending her public key to the receiver? In such a case, the receiver would have no way of knowing whether or not the messages received are from an authentic source. Therefore, the public key needs to be shared securely for digital signatures to work.
How a digital signature works
To avoid the aforementioned scenario, the sender should add his/her public key, on a certificate containing his/her details, and a digital signature from a trusted third party. The public keys of these trusted third parties are hardcoded into the browsers. The sender then sends the digital certificate, the digital signature, and the message to the receiver.
Some trusted authorities
The following are some authorities that can issue digital certificates:
-
Symantec
-
Comodo
-
GeoTrust
-
DigiCert
Free Resources
