Announcement

Collapse
No announcement yet.

How do these Intermediate CA Certificates do thier Certificate Chaining

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • How do these Intermediate CA Certificates do thier Certificate Chaining

    Hi Guys,

    Below System in Screenshot is Win 2003 Sp2 Server, with no windows updates(virtual instance)

    I wanna confirm how these two Verisign intermediate CAs complete their Certificate chaining ? because in these certificates(albeit they are expired) have no AKI (Authority key identifier extension/attribute) set in them --- so howcome will they track their parent CA - who indeed issue them Cert - and complete their Certificate chaining ?

    OR is that these Certificates are indeed based upon X.509 v1 version and this version adheres no AKI / SKI (Subject key identifier)concept.

    http://www.imagebam.com/image/044b0e179148643

    Regards
    Blog: http://VirtualizationMaximus.com
    OS ... VirTuaLiZaTioN ... MaxiMuS ... Fair, Good, Better, Best



  • #2
    Re: How do these Intermediate CA Certificates do thier Certificate Chaining

    I'm not exactly sure what you're trying to ask but the chain is established by having a trusted root validating other certificates.

    In the case you're describing, with an Intermediate CA, the chain works like this:
    - The trusted root signs the intermediate CA's public key certificate, which contains information on how the certificate can be used. This validates the certificate. Since it's trusted by a root that you trust, you now also trust the intermediate.
    - The intermediate CA sign the public key of an SSL cert used for a website. Since you trust the intermediate CA that issued the cert, you now trust the SSL cert.

    So the trusted root validates the intermediate which validates the SSL cert. That is a certificate chain.
    Regards,
    Jeremy

    Network Consultant/Engineer
    Baltimore - Washington area and beyond
    www.gma-cpa.com

    Comment


    • #3
      Re: How do these Intermediate CA Certificates do thier Certificate Chaining

      Specifically - i was asking - how a System (say Client System) builds up the Certificate Chain - for ex:
      RootCA|
      SubCA|
      EntCA

      anyhow Solved : http://social.technet.microsoft.com/...1-e53eaba7ac88
      Blog: http://VirtualizationMaximus.com
      OS ... VirTuaLiZaTioN ... MaxiMuS ... Fair, Good, Better, Best


      Comment


      • #4
        Re: How do these Intermediate CA Certificates do thier Certificate Chaining

        Thanks for sharing.
        Regards,
        Jeremy

        Network Consultant/Engineer
        Baltimore - Washington area and beyond
        www.gma-cpa.com

        Comment

        Working...
        X