Certificate formats-X.509, der and PEMPart: 1 2 3Certificate standard and File encodings seem to be confusing. I wrote down some notes about:
What is X.509 certificate standard?
PEM (privacy enhanced mail) Encoding
Der
Those related to certificates (SSL,X.509,PEM,DER,CRT,CER,KEY,CSR,P12, etc.) [ZZ]Reprinted 2015-06-09 20:21:04From:http://www.cnblogs.com/guogangj/p/4118605.htmlThese concepts related to certificates are really tricky because they haven't been
1. Der-encoded key pair
Let's talk about DER encoding because JCE supports DER encoding key pair parsing. For details, see pkcs8encodedkeyspec and x509encodedkeyspec.
DER encoding is a subset of the ASN.1 encoding rules. We do not know how to
encoding (also for extension) . Der = Extension der is used for binary DER-encoded certificates. These certificates can also be extended with a CER or CRT. The more appropriate term is "I have a DER-encoded certificate" instead of "I have a der
Format
Name
Description
PKCS #7
Cryptographic Message Syntax Standard
A PKCS #7 file can be used to store certificates, which is a signeddata structure without data (just). The file name extension is usually. p7b,. p7c
Openssl_verify
What is the usage of openssl_verify?
I want to know what value his three parameters pass separately!
Reply to discussion (solution)
$pub _key_id No suspense is the public key! Two other parameters what do $data and $signature
Http://blog.chinaunix.net/uid-26575352-id-3073802.html
Common certificate formats and mutual conversionsThe PKCS full name is Public-key cryptography standards, a set of standards developed by RSA Labs and other security system developers to
1. First step using OpenSSL to convert Pem key to der key//e:\01doc\bin>openssl.exe rsa-in rsakeydec.pem-outform der-out pri.der2, call the following program directly read der converted to C # required XML key, and then ciphertext decryption3.
Using OpenSSL utilities
An OpenSSL command line takes the following form:
openssl utility arguments
For example:
openssl x509 -in OrbixCA -text
Each Command is individually described in this Appendix. To get a list of the arguments
Formats and differences of digital certificates
Certificates that exist as files are generally in the following formats:
1.Certificate with Private Key
It is defined by the public key cryptography standards #12 and PKCS #12 standards. It contains
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.