CA Certificate Self Issued Certificate What does self signed certificate mean

Hello! CA certificate.

CA certificate is the e-commerce certification authority, also known as the e-commerce certification authority, which is responsible for issuing and managing digital certificates, and as a trusted third party in e-commerce transactions, it bears the responsibility of verifying the legitimacy of the public key in the public key system.

The contents of the certificate include: information of the e-visa authority, public key user information, public key, signature and validity period of the authority, etc. At present, the format and verification methods of certificates generally follow international standards.

Self-issued certificates.

Something issued by the server itself to prove its identity, issued by a non-authoritative authority, the default client is not trusted, in the following cases, a certificate is a self-issued certificate instead of a self-signed certificate: when the CA is performing a key change, there may be two key pairs (new key pair and old key pair), there may be a situation where the old public key is issued with the new private key or the new public key is issued with the old private key, so the certificate formed is a self-issued certificate, but not a self-signed certificate.

A self-signed certificate is a certificate signed by the person who created it, not a certificate issued by a trusted certificate authority. Self-signed certificates are prevalent with serious security vulnerabilities, are highly vulnerable, and are often not trusted by browsers. Therefore, it is not recommended that you use self-signed certificates to avoid huge security risks and security risks, especially important online banking systems, online ** systems and e-commerce systems.

There are two main drawbacks to using self-signed certificates:

1) The visitor's connection could be hijacked, allowing the attacker to view all the data sent (thus defeating the purpose of the encrypted connection).

2) Certificates cannot be revoked like trusted certificates.

A CA certificate is a server certificate issued by a trusted CA organization, which has been audited by international standards and added to the SSL certificate of major root certificate repositories in order to become internationally recognized and play a role in encryption and authentication.

English: CA certificate, self-issued certificate, self-signed certificate

Source: itu t | iso/iec 9594-8：2001，gb/t

Definition: A CA certificate is a certificate issued by one CA to another. Self-issued certificates.

A certificate in which the issuer and the subject of the certificate are the same CA. Self-Certificate: A special case of a self-issued certificate in which the CA uses its private key to sign the certificate, and the corresponding public key is in the certificate.

Explanation: In practice, "CA certificate" usually refers to a certificate that the issuer and the subject are different, and the self-signed certificate is usually called a "root certificate". A self-issued certificate is a type of self-issued certificate, and a certificate is a self-issued certificate and not a self-issued certificate in the following cases:

When a CA performs a key swap, there may be two key pairs (the new key pair and the old key pair), and there may be situations where the old public key is issued with the new private key or the new public key is issued with the old private key.