Chinese Yellow Pages | Classifieds | Knowledge | Tax | IME

Digital Signature:

how it works

This diagram shows the process of computing a message digest, encrypting, and transmitting the message to the receiver, who decrypts the digital signature, computes a message digest, and compares the two digests


Digital certificate is one use cases of digital signature.


To create the digital signature, the CA generates a message digest from the certificate, encrypts the digest with its private key, and includes the digital signature as part of the certificate. Anyone can use the message digest function and the CA’s public key to verify the certificate’s integrity.

Distributing a certificate means distributing the public key!

In TLS/SSL, client will get the server’s public key from the servers’ digital certificate ( server Hello msg)

Revoked Certificates:

Certificate Revocation List (CRL) ( basically a file contain the revoked certificate’s serial number)  and Online certificate Status Procotol ( OCSP) are used to check if the certificate are revoked or not.




Leave a Reply

Your email address will not be published. Required fields are marked *