Network Security
X.509 Certificate
Also known as: Digital certificate, PKI certificate
Definition
A standard structure for a digital certificate that binds a public key to an identity through a signature from a trusted certificate authority.
Examples
- A TLS certificate issued for www.example.com with SAN entries for example.com and api.example.com.
- A code-signing X.509 certificate used to sign Windows installer packages.
Related terms
Public Key Infrastructure (PKI)
The combined system of policies, software, hardware and trusted authorities used to issue, distribute, validate and revoke digital certificates that bind identities to public keys.
Certificate Authority (CA)
A trusted entity that issues and signs digital certificates, binding cryptographic public keys to verified identities such as domain names or organisations.
Digital Signature
A public-key cryptographic mechanism that proves the authenticity, integrity and non-repudiation of a message or document.
TLS (Transport Layer Security)
TLS (Transport Layer Security) — definition coming soon.
Self-Signed Certificate
A digital certificate that is signed with the same private key whose public counterpart it contains, with no external certificate authority involved.
Extended Validation Certificate
A TLS certificate issued only after a CA performs a strict, standardised verification of the legal identity, physical existence and authority of the requesting organisation.