well, that's fine and pretty clear, I'm afraid.
The proble ist not WHICH certificate is used, the
problem is WHAT actually happens during verification ...
I was already told to have a glace at RFC2459 section 6,
and I did so. It's now a little clearer a I am convinced
that my initial question wasn't that stupid :-))
Thanks anyhow
Cheers, Arne
> To verify the validity of the key used to sign your certificate, your
> browsers uses the Verisign self-signed certificate it finds pre-installed
in
> its certificate store.
> Claudio Campetto.
> -----Messaggio originale-----
> Da: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]
> Inviato: luned́ 4 settembre 2000 19.31
> A: Openssl-Users
> Oggetto: checking certificate validity
>
>
>
> Hi there,
>
> I assume, this question is pretty far away from what most of you expect
> a guy creating his own little CA could possibly ask ... but I dare anyway
>
>
> If I have a browser with a VeriSign CA certificate and a user certificate
> from VersiSign, how does the browser check for my certificate's validity?
>
> I mean, wha does actually happen? Does use hash values within the two
> certificates? Does it go online to contact VeriSign and "challenge" it
> using
> VeriSign's public key?
>
> I apologize in advance if this question is way to stupid ... however I
> still
> wonder ... does someone have the nerves to tell me, please?
>
>
> ________________________
> Gruss, Arne Borkowski
> Hamburg
>
>
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
>
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
