| (I) A digital certificate that binds a system entity's identity to
a public key value, and possibly to additional data items; a
digitally-signed data structure that attests to the ownership of a
public key. (See: X.509 public-key certificate.)
(C) The digital signature on a public-key certificate is
unforgeable. Thus, the certificate can be published, such as by
posting it in a directory, without the directory having to protect
the certificate's data integrity.
(O) "The public key of a user, together with some other
information, rendered unforgeable by encipherment with the private
key of the certification authority which issued it." [X509]
|
