Re: Where do you get Certificates of Authority

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

So, the process is that you connect to your MobileMe account and the
MobileMe server presents its certificate to your computer. Your computer
says, "I'm not sure that I trust you. I'll ask someone that I do trust
to verify you are who you say you are." The MobileMe certificate says,
"You can go ask Verisign." Because you have the Verisign certificates
pre-installed in your System Roots keychain, you trust Verisign.
Therefore, when your computers asks Verisign if the MobileMe certificate
is valid and it says "Yes" then you trust that the server you've
connected to is indeed MobileMe.

Creating your own certificate shouldn't affect anything. It should
neither hurt nor help.
Hope this helps!

Nevermind, I am totally lost.

I read all kinds of stuff on how to create your own certificates, and now I am told it niether helps or hurts. The whole certificate thing has become convoluted gibberish to me.

So, I am dropping the whole issue.
.

Relevant Pages

  • Re: Proposal for a new PKI model (At least I hope its new)
    ... That is say I trust Paul Rubin's public key. ... two basic reasons for the SSL server domain name certificate: ... certificates have to check with the domain name infrastructure to see ... CA/PKI industry is that public keys be registered with the domain name ...
    (sci.crypt)
  • Re: Huge discrepancy in "standards" of risk evaluation for theory vs. for practice in cryptology
    ... site's Verisign cert, or its Thawte cert, or its Hells Angels cert, ... Assume you have a certain amount of trust in an e-commerce vendor. ... CA issued the certificate for that e-commerce vendor) and avoid the ...
    (sci.crypt)
  • Re: Digitally sign my own DLL?
    ... - in what sense are "you" more "untrusted root authority" than Verisign? ... if you have established a relation with for example a customer, you are more trusted from him that a Verisign, that he has never hear of. ... This is the reason why we use our own CA certificate. ... - it may be strange that MS let you install silently a new CA into to the list of trusted CA but this is logical: if you trust someone enough to execute its code, you can trust its CA. ...
    (microsoft.public.vc.mfc)
  • Re: How do I store secrets?
    ... One of the aspects of digital signature verification that is too often ... since encrypted with the PRIVATE key for which you have, and TRUST, ... If the certificate is issued by a KNOWN and TRUSTED CA, ... Then you create a server ...
    (microsoft.public.dotnet.security)
  • Re: New Method for Authenticated Public Key Exchange without Digital Certificates
    ... you are referring to any situation where there might be some trust ... resorting again to the merged security taxonomy and glossary ... as definitions specifically within the context of a Public Key, ... Certificate, Certification Authority environment. ...
    (sci.crypt)