What is in a digital certificate

 

Digital certificates used by WebSphere MQ comply with the X.509 standard, which specifies the information that is required and the format for sending it. X.509 is the Authentication framework part of the X.500 series of standards. X.500 is the OSI Directory Standard.

Digital certificates contain at least the following information about the entity being certified:

When you receive a certificate from a CA, the certificate is signed by the issuing CA with a digital signature. You verify that signature by using a CA certificate, from which you obtain the public key for the CA. We can use the CA public key to validate other certificates issued by that authority. Recipients of your certificate use the CA public key to check the signature.

Digital certificates do not contain your private key. You must keep your private key secret.

 

Parent topic:

Digital certificates


sy10540_