What is a Certificate Authority?

Difficulty: unrated

Source: bregman-arie/devops-exercises by Arie Bregman

Answer

wikipedia : A certificate Authority that stores, singns and issues certificates.

A certificate certifies the authenticity of the public key delivered by the website. It prevents man-in-the-middle attacks by providing a lot of information which identifie the public key. Importante information provided inside a X.509 certificate are like :

Version Number
Serial Number
Signature Algorithm ID
Issuer Name
Validity period
Subject name
Subject Public Key info

Every certificates must be signed by a trusted authority, a certificate chain is a concatenation of multiple certificates signed by a more trusted authority from the one delivered by the website to the root Certificate Authority (CA). The root Certificate Authority is the top most trusted authority and every browsers embark their certificate natively.