Re: certificates

• Previous message: Jordan: "certificates"
• In reply to: Jordan: "certificates"
• Next in thread: Jordan: "Re: certificates"
• Reply: Jordan: "Re: certificates"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Mon, 29 Nov 2004 00:06:11 +0100

Hi Jordan,

There are usually at least two reasons. One if what you described -- server
authentication. E.g. I really want to know that I am talking to Microsoft
server when I am downloading patches; or I really want to know that I am
talking to my on-line bank server when I am entering data to access my
account information.

The other purpose is to encrypt the data that is exchanged between the
server and the client. I don't want people to listen in on my conversation
when I am sending information from my computer to bank server -- or when
bank server replies with information.

There are also client side certificates. They are used to authenticate users
to web server. This way server knows who it is talking to (since I am the
only one who is supposed to have the private keys).

I hope this helps,

Mike

"Jordan" <anonymous@discussions.microsoft.com> wrote in message
news:989601c4d59c$8dd72c40$a401280a@phx.gbl...
> Hello,
>
> Question, what is the TRUE purpose of having a
> certificate for a website? just to prove the
> authenticity? saying this is the REAL site?
>
> Regards,
> Jordan
>

• Previous message: Jordan: "certificates"
• In reply to: Jordan: "certificates"
• Next in thread: Jordan: "Re: certificates"
• Reply: Jordan: "Re: certificates"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]