May 20 2011, OpenSSL & SSL Certificates.

SSL works by way of certificates. A CA (Certificate Authority) has a private key which they can then use to sign other certificates.

If a self-signed certificate from the CA is made available to somebody who wishes to check any given certificate, that client can use the self-signed certificate to validate the signature on any other certificate signed by the CA.

Continue reading

May 18 2011

Most Common OpenSSL Commands

One of the most versatile SSL tools (the default toolkit installed in Linux distributions) is OpenSSL which is an open source implementation of the SSL protocol. OpenSSL is commonly used to create the CSR and private key for many different platforms.

OpenSSL has hundreds of different functions to, for example, view the details of a CSR or certificate, compare an MD5 hash of the certificate and private key (to ensure they match), convert the certificate to a different format and so on.

Continue reading