introduction
what it is
(from http://msdn.microsoft.com/workshop/security/authcode/intro_authenticode.asp)
Certification authorities (CAs) are trustworthy persons or organizations that issue certificates to applicants whose identity has in some way been verified by the CA . Certificates are verified through a hierarchy of these CA s. Each certificate is linked to the certificate of the CA that signed it. By following this hierarchy, or verification path, to a known, trusted CA , you can be assured that a certificate is valid. An example of this is illustrated in the following diagram.
In this example, Netwerks' certificate is certified by CA1, while Bob's is certified by CA3. Netwerks knows CA1's public key. CA2 has a certificate signed by CA1, so Netwerks can verify the CA2 certificate. The root also has a certificate signed by CA1. CA3 (Bob's CA ) has a certificate signed by the root. By moving up the verification chain to a common point (in this case, the root), Netwerks can verify Bob's certificate.
what it isn't
where it is
history
