The University of SydneyPage 50Certification authorities–certification authority (CA): binds public key to particular entity, E.–E (person, router) registers its public key with CA.–E provides “proof of identity”to CA. –CA creates certificate binding E to its public key.–certificate containing E’s public key digitally signed by CA –CA says “this is E’s public key”
Bob’s publickey K B+Bob’s identifying information digitalsignature(encrypt)CA privatekey K CA-K B+certificate for Bob’s public key, signed by CA