[Cloud Computing]Mechanisms: Certificate
来源:互联网 发布:mysql minpoolsize 编辑:程序博客网 时间:2024/03/28 23:30
Certificate
A certificate is a data file that binds the identity of an entity to a public key, and contains the user's identification and a signature from the issuing authority. It is also referred to as a digital certificate, X.509 certificate, or a public key certificate. Certificates are issued from the public key infrastructure (PKI), which provides a registration authority to determine the identity of the certificate holder or subject to a required level of assurance, and a certification authority to issue the certificate. The PKI also contains a repository of the issued certificates and the certificate revocation list (CRL).
Certificates contain a public key and have a corresponding private key that is protected by a password and can be stored on a hardware security module (HSM) such as a smart card. Data encrypted by the private key can only be decrypted by the public key, whereas data encrypted by the public key can only be decrypted by the private key. With this scheme, most required security services can be created.
Figure 1 - An individual or subscriber with a digital certificate.
Figure 1 shows a certificate issued to a person. The certificate contains the public key while the corresponding private key is protected. The person authenticates to the private key by unlocking it with the password. Certificates are also issued to non-person entities (NPEs), such as Web servers or routers.
Related Patterns:
- Cloud Authentication Gateway
- Federated Cloud Authentication
- Trusted Cloud Resource Pools
- [Cloud Computing]Mechanisms: Certificate
- [Cloud Computing]Mechanisms: Certificate Authority
- [Cloud Computing]Mechanisms: Certificate Revocation List
- [Cloud Computing]Mechanisms: Certificate Trust Store
- [Cloud Computing]Mechanisms: Certificate Validation Service
- [Cloud Computing]Mechanisms: Encryption
- [Cloud Computing]Mechanisms: Geotag
- [Cloud Computing]Mechanisms: Honeypot
- [Cloud Computing]Mechanisms: Hypervisor
- [Cloud Computing]Mechanisms: Sandbox
- [Cloud Computing]Mechanisms: Attestation Service
- [Cloud Computing]Mechanisms: Attribute Authority
- [Cloud Computing]Mechanisms: Audit Monitor
- [Cloud Computing]Mechanisms: Data Transport
- [Cloud Computing]Mechanisms: Digital Signature
- [Cloud Computing]Mechanisms: Failover System
- [Cloud Computing]Mechanisms: Load Balancer
- [Cloud Computing]Mechanisms: LUN Masking
- 区分各关系
- 勾股定理一日一证连载44
- NOIP 2010 关押罪犯
- 主席树模板求不带修改的区间k大
- BZOJ2656 [Zjoi2012]数列(sequence)
- [Cloud Computing]Mechanisms: Certificate
- Hadoop面试题
- Attention相关的paper整理
- Java如何查看当前类的超类
- PHP面向对象基础
- HDU 5288 OO’s Sequence (数论)
- hdoj1003【DP】
- ERROR 2002 (HY000): Can't connect to local MySQL server through socket '/tmp/mysql.sock' (111)
- NBLAST SCORE