Getting to know the terms and technical glossary for an app feature can help you better understand it.
PKCS#12: A binary format for storing a bundle of cryptographic objects, including private keys, public keys, and certificates.
Certificate: A digital document that binds a public key to the identity of the certificate holder, typically issued by a Certificate Authority (CA).
Private Key: A secret key used for decrypting messages or signing data. It should be kept confidential.
Public Key: A key that can be shared openly and is used for encrypting data or verifying signatures made with the corresponding private key.
Key Store: A file or repository that stores cryptographic keys and certificates, often used in software applications to manage security.
Passphrase: A secret word or phrase used to protect access to a PKCS#12 file, securing its contents.
Encryption: Converting information into a coded format to prevent unauthorized access.
Decryption: The process of converting encrypted data to its original format, allowing authorized users to access the information.
Certificate Authority (CA): An entity that issues digital certificates and verifies the identity of the certificate holder.
Chain of Trust: A sequence of certificates, starting from a root certificate to intermediate and end-user certificates, that establishes the authenticity of a certificate.
X.509: A standard that defines the format of public key certificates, including the structure of the certificate itself.
Key Pair: A set of two keys (public and private) used in asymmetric encryption, where one key encrypts data and the other decrypts it.
Export: The process of extracting a certificate and its private key from a key store, often to transfer it to another system.
Import: The process of adding a certificate and its private key to a key store.
Digital Signature: A cryptographic value created by applying a private key to a hash of a message, ensuring the integrity and authenticity of the message.
Secure Sockets Layer (SSL): A protocol for establishing a secure and encrypted link between a web server and a browser, often using certificates.
Transport Layer Security (TLS): The successor to SSL, providing encryption and secure communications over a computer network.
Self-Signed Certificate: A certificate that is signed by the entity that created it, rather than by a trusted CA, often used for testing or internal purposes.
Revocation: The process of invalidating a certificate before its expiration date, typically due to a security breach or change in ownership.
Certificate Signing Request (CSR): A request sent to a CA to issue a certificate, containing the public key and identifying information about the applicant.