Updating exchange certificate ten rules for dating my son
My questions is what the client is supposed to do to install/update a CA certificate. What I understand from your answer is i) it would be enough for a client to have a root certificate to validate a signature, ii) the root certificate can be pre-installed on a client or distributed with application packages from the server, iii) a client would need to build a chain of trust, iv) a client would need to use CRL or OCSP, but the server would just sign with a new key.
I am trying to implement a system where a client can download application packages from a server to install/update them on the client.
I suppose that the client is something like a platform on an embedded system.
I wonder if there is any explanation about those at an implementation level.
The Official Way The certificate is a valid legal identification for a person/company/agency.
You can create you own CA and emmit your own certificates locally in your server and development machine.Here's how you do it: First install openssl in your machine if it's not already installed.