Client Side Certificates

• To address the weak state of affairs in client side authentication, Netscape added the ability for users to have a digital certificate that would cryptographically prove their identity. This certificate was a public/private key pair, and allowed a user to submit the certificate to a web site as proof of their identity. Their certificate would be issued by a known authority, and therefore recognizable as valid.

• Issues:

  • Key Revocation
  • Key Management

Previous slide

Next slide

Back to first slide

View graphic version