"BlackSnail" <[EMAIL PROTECTED]> writes: >1.When I buy a certificate from Verisign or Entrust,who generate the RSA key >pair? Verisign or myself?
You generate the private/public key pair. Then you send on only the public key to verisign. They convert it into a certificate signed by them. They never see your private key.
