r***e
发帖数: 38 | 1 【 以下文字转载自 Programming 讨论区 】
【 原文由 itis 所发表 】
This involves the public security algorithm.
The basic idea is:
1. Your web server generates a CSR, which contains
the identification of your website and the public key
for your site.
2. CA (Certificate Authority) uses its own private key
to encrypt your CSR, which is basically a certificate.
3. install the certificate in your web server.
4. Now the browser connects to your server and try to begin
a SSL session. It reads the certificate, and decrypts | r***e
发帖数: 38 | 2 【 以下文字转载自 Programming 讨论区 】
【 原文由 roche 所发表 】
我有点confused,关于server authentication ,就说Java Web server2.0吧
它的doc里说,用authstore.exe create a self signed server certificates,
以后browser用https连接时,browser 会让 client add new server certificate to its
list of trusted certificates. 觉得很简单,是吗?
关于client authentication:
doc如是说
1。 Client request and import client certificate into web browser
2. Client retrieve and transmit client certificate to JWS
3.Server, place the client certificate in JWS
4.Server, enable |
|
