Talk:Public key certificate

From Wikipedia, the free encyclopedia
Jump to: navigation, search
          This article is of interest to the following WikiProjects:
WikiProject Cryptography / Computer science  (Rated Start-class, Top-importance)
WikiProject icon This article is within the scope of WikiProject Cryptography, a collaborative effort to improve the coverage of Cryptography on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.
Start-Class article Start  This article has been rated as Start-Class on the quality scale.
 Top  This article has been rated as Top-importance on the importance scale.
Taskforce icon
This article is supported by WikiProject Computer science (marked as Top-importance).
 
WikiProject Computing / Networking / Software (Rated Start-class, Low-importance)
WikiProject icon This article is within the scope of WikiProject Computing, a collaborative effort to improve the coverage of computers, computing, and information technology on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.
Start-Class article Start  This article has been rated as Start-Class on the project's quality scale.
 Low  This article has been rated as Low-importance on the project's importance scale.
Taskforce icon
This article is supported by Networking task force (marked as Low-importance).
Taskforce icon
This article is supported by WikiProject Software (marked as Low-importance).
 
WikiProject Computer Security / Computing  (Rated Start-class, Mid-importance)
WikiProject icon This article is within the scope of WikiProject Computer Security, a collaborative effort to improve the coverage of computer security on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.
Start-Class article Start  This article has been rated as Start-Class on the project's quality scale.
 Mid  This article has been rated as Mid-importance on the project's importance scale.
Taskforce icon
This article is supported by WikiProject Computing (marked as Low-importance).
 

Contents of a Typical Digital Certificate[edit]

Should Public Key Algorithm be included in this section as well?--71.104.234.203 (talk) 01:20, 1 May 2009 (UTC)

Self-referencing Definition[edit]

"...a public key certificate (or identity certificate) is a certificate..."

Isn't that a bit like saying, "A roundle blomfin is a blomfin..."

If you don't know what a 'blomfin' is, then the explanation of what a 'roundle blomfin' is won't get you very far.

81.187.233.162 15:18, 27 April 2007 (UTC)

Good point. I tried to clarify.--agr 16:18, 27 April 2007 (UTC)
If you link to "blomfin" in the sentence, though, the user can get that information if they do not need it. That way, the information is not duplicated. Should we describe what a certficate is on a page other than "certificate"? Dprust 17:54, 11 May 2007 (UTC)

Removed from criticism[edit]

I removed this section because it has the look and feel of a shameless plug coupled with being-written-in-five-seconds-ism. In particular, notice the lowercase "i" in the quoted text:

Public key certificates are often used for web server identification (eg. https protocol). Usually people don't understand the security model of public key certificates and neglect to read the alert information. This would result eg. in phishing attacks, when the phishing site's certificate was issued by an untrusted CA, the user click on the "go on, i want to use the application" button, and at the end the user trusts the phishing site, because "he/she can see the security lock in the bottom of the browser". There are a lot of other critics for PKI by Peter Gutmann.

I figured it was best to move it to the discussion page for, well, discussion. =) As is, it's pretty bad. Change it or lose it? --69.233.2.125 05:16, 28 September 2007 (UTC)

This problem is definitely worthy of mention, but Peter Gutmann should probably stay out of it. And yes, the text should be rewritten in a more appropriate manner. -- intgr [talk] 16:37, 28 September 2007 (UTC)


File Formats?[edit]

Some hints about file formats would be appreciated: pem, crt, csr, cert, key, wtf? convertible? —Preceding unsigned comment added by 134.147.252.130 (talk) 08:58, 18 August 2008 (UTC)

That is Here in the article on X.509--Stuart Ward UK (talk) 12:53, 23 January 2013 (UTC)

Certificate Authority vs. Provider[edit]

The section "Certificates and web site security" refers to "certificate provider". This is the same as CA, right? Leotohill (talk) 04:09, 4 December 2008 (UTC)

Change from EV t non-EV certificate[edit]

The article says: "A web browser will give no warning to the user if a web site suddenly presents a different certificate, even if that certificate has a lower number of key bits, even if it lacks Extended Validation". I have not tested this but I would fully expect that if a site changed from an EV certificate to a non EV certificate that the "green bar" would no longer be displayed. -- Q Chris (talk) 08:12, 27 June 2012 (UTC)

You are correct, the green bar is in fact no longer displayed.[citation needed] Zell Faze (talk) 20:11, 30 October 2013 (UTC)