Cryptography Tutorials - Herong's Tutorial Examples - v5.42, by Herong Yang
Certification Path Validation Rules
This section describes verification rules of a certificate path - The issuer's digital signature must match the subject's public key of the previous certificate in the path.
A certification path needs to be validated. Here are the validation rules:
OpenSSL offers a nice tool, the "verify" command, to validate a certification path. Here is the syntax of the "verify" command:
verify -CAfile first.crt -untrusted all_middle.crt last.crt
Table of Contents
Introduction to AES (Advanced Encryption Standard)
DES Algorithm - Illustrated with Java Programs
DES Algorithm Java Implementation
DES Algorithm - Java Implementation in JDK JCE
DES Encryption Operation Modes
PHP Implementation of DES - mcrypt
Blowfish - 8-Byte Block Cipher
Secret Key Generation and Management
Cipher - Secret Key Encryption and Decryption
RSA Implementation using java.math.BigInteger Class
Introduction of DSA (Digital Signature Algorithm)
Java Default Implementation of DSA
Private key and Public Key Pair Generation
PKCS#8/X.509 Private/Public Encoding Standards
Cipher - Public Key Encryption and Decryption
OpenSSL Introduction and Installation
OpenSSL Generating and Managing RSA Keys
OpenSSL Generating and Signing CSR
►OpenSSL Validating Certificate Path
►Certification Path Validation Rules
Creating a Certificate Path with OpenSSL
Validating a Certificate Path with OpenSSL
"keytool" and "keystore" from JDK
"OpenSSL" Signing CSR Generated by "keytool"
Migrating Keys from "keystore" to "OpenSSL" Key Files
Certificate X.509 Standard and DER/PEM Formats
Migrating Keys from "OpenSSL" Key Files to "keystore"