If a user wants to obtain his own certificate, he should apply to CA first. After CA determines the identity of the applicant, it assigns it a public key. CA binds the public key with the identity information of the applicant and signs it, then forms a certificate and sends it to the applicant. A CA also has a certificate (including a public key and a private key). Online public users trust CA by verifying its signature, and anyone can get CA's certificate (including public key) to verify the certificate issued by CA. The contents of the certificate include: information of electronic visa institution, information of public key user, public key, institution signature and validity period, etc. The principle of extended data certificate: digital certificate attaches user information and CA's signature to the user's public key. The public key is one part of the key pair, and the other part is the private key. The public key is public and can be used by anyone. Only you know the private key. Information encrypted by the public key can only be decrypted by the corresponding private key. In order to ensure that only one person can read his own letter, the sender should encrypt the letter with the public key of the receiver; The recipient can decrypt the letter with his private key. Similarly, in order to verify the identity of the sender, the sender should sign the letter with his own private key; The receiver can use the sender's public key to verify the signature to confirm the sender's identity.
Second, what is the enterprise ca certificate? How to apply
CA is the certification authority and the core of PKI. CA is the authority responsible for issuing certificates, authenticating certificates and managing issued certificates. It should formulate policies and specific steps to verify and identify the user's identity, and sign the user certificate to ensure the identity of the certificate holder and the ownership of the public key. CA is an e-commerce certification body, also known as the e-commerce certification center. It is the organization responsible for issuing and managing digital certificates. As a trusted third party in e-commerce transactions, CA is responsible for verifying the legitimacy of public keys in public key systems, which is also commonly known as SSL certificates. The specific application process is as follows: First, generate and submit a CSR (Certificate Signature Request) file. CSR files can usually be generated online (or on a server). At the same time, the system will generate two keys, public key CSR and key key. After selecting the SSL certificate application, submit the order and submit the generated CSR file to the CA organization where the certificate is located. Second, CA institutions verify that CA institutions have two ways to verify the SSL certificate application submitted: the first way is domain name authentication. The system will automatically send a verification email to the administrator mailbox of the domain name (this mailbox is the mailbox of the domain name contact found through the WHOIS information). After the administrator receives the email, click "I confirm" to complete the email verification. All models of SSL certificates must be authenticated by domain name. The second is the authentication of enterprise-related information. For enterprises applying for OV SSL certificate or EV SSL certificate, besides domain name authentication, it is necessary to manually verify the relevant data and information of the enterprise to ensure the authenticity of the enterprise. Step 3: CA issues certificates. Because the SSL certificate application mode is different, the verification materials and methods are different, and the issuance time is also different. If you apply for a DV SSL certificate, it will take about 10 minutes at the earliest. If you apply for OV SSL certificate or EV SSL certificate, it can usually be issued within 3-7 working days.
3. Where can I get a ca certificate?
Legal analysis: 1. Bring a copy of the business license (photocopy), a copy of the tax registration certificate (stamped with the official seal of the unit) and a USB flash drive, and apply for downloading at the window of the local tax authority; 2. Note: The handler should carry the ID card; 3. Use of CA certificate: After obtaining the CA certificate, double-click the CA certificate in the computer to complete the import and installation; 4.CA certificate is an electronic document to confirm identity and ensure the security of online information when applying online. Taxpayers shall properly keep the relevant documents and passwords of certificates and shall not disclose or deliver them to others. 5. Taxpayers use the user name and download password obtained at the time of payment to download the CA certificate from the Internet. Taxpayers have the responsibility to keep the user name and password of the download certificate confidential. After the first successful login, please modify the download password yourself and remember the password. Legal basis Article 13 of the Electronic Signature Law of People's Republic of China (PRC), an electronic signature is considered as reliable if it meets the following conditions: (1) When the data generated by an electronic signature is used for electronic signature, it belongs to the exclusive rights of the electronic signer; (2) When signing, the electronic signature data is only controlled by the electronic signer; (3) Any changes to the electronic signature after signature can be found; (4) Any changes to the content and form of the data message after signature can be found. Article 14 A reliable electronic signature has the same legal effect as a handwritten signature or seal.
4. What is a CA digital certificate? How to deal with it!
Explanation: CA digital certificate is a certificate signed and certified by the authority of CA center. Digital certificate is the identity card of the online world. In the network world, it is possible for users who don't meet each other to establish a safe and reliable trust relationship. The establishment of this trust relationship comes from PKI/CA certification center, so it is very important to build a secure PKI/CA certification center. Handling: To obtain a certificate, you must first apply to CA. After CA determines the identity of the applicant, it assigns a public key, and CA binds the public key with the identity information of the applicant and signs it to form a certificate and send it to the applicant. In order to identify the authenticity of the certificate, the signature on the certificate is verified by the CA's public key. Once verified, the certificate is considered valid. Function: Digital certificate provides electronic authentication for secure communication between both parties. In Internet, intranet or extranet, digital certificates are used to realize identity identification and electronic information encryption. A certificate contains the identity information of the owner of the key pair (public key and private key). By verifying the authenticity of the identity information, the identity of the certificate holder can be authenticated. Extension: The contents of CA certificate include: 1. Electronic visa authority information, public key user information, public key, authority signature and validity period, etc. The format and verification method of certificates generally follow the international standard X.509 2. Encryption: CA identification
The process of converting words into unreadable form (that is, ciphertext) is called encryption. 3. Decryption: The process of converting ciphertext into directly readable text is called decryption. The special requirements of CA certificate for these hash functions in digital signature are: 1, and there is no length limit for the accepted input message data; 2. Generate a fixed-length summary (digital fingerprint) for any input message data and output it; 3. The abstract can be easily calculated from the message; 4. It is difficult to generate a message for the specified abstract, from which the specified abstract can be calculated; 5. It is difficult to generate two different messages with the same summary.
5. how to apply for Shenzhen social security CA certificate?
The processing flow of social security CA digital certificate is as follows: 1. Prepare application materials, including: an application form for social security digital certificate (* * 4 pages, including two copies of the application form and two copies of the electronic authentication service agreement) (note: check the business type), a copy of the organization code certificate of the unit, a copy of the business license of the unit and a copy of the ID card of the unit manager. Note: The above paper materials must be stamped with the official seal of the company. If the enterprise holds a new business license, it will not submit the organization code certificate information when submitting it for handling. 2. Submit the above materials to the acceptance center of Shenzhen E-commerce Security Certificate Management Co., Ltd. (Shenzhen CA), check the originals of all documents and get copies. 3. Shenzhen CA Acceptance Center will review the data. If the data is true and safe, the applicant will pay the fee, and Shenzhen CA Acceptance Center will issue an invoice and issue a digital certificate. 4. If the application materials are incomplete, supplement the application materials and resubmit them. After the application is approved by Shenzhen CA Acceptance Center, the applicant will pay the fee, and Shenzhen CA Acceptance Center will issue an invoice and issue a digital certificate. Extended information: Role of CA digital certificate: 1. Security 1. In order to avoid the security risks such as certificate loss caused by improper use in the traditional digital certificate scheme, Alipay creatively launched a dual certificate solution: when Alipay members apply for digital certificates, they will get two certificates at the same time, one for verifying Alipay accounts and the other for verifying the computers currently used by members. 2. The second certificate cannot be backed up. Members must apply for a new one for each computer. In this way, even if a member's digital certificate is illegally stolen by others, he can still ensure that his account will not be lost. 2. After the unique application for using the digital certificate, if other computers log in to the Alipay account without importing the digital certificate backup, you can only query the account and can't do anything, that is to say, you have a digital certificate similar to the "key", which enhances the security of the account. Third, convenience 1, instant application, instant opening and instant use. 2. Customize various ways to maintain digital certificates, such as SMS, security issues, etc. 3. Users can easily master digital certificates without any knowledge.
6. How to apply for a local tax CA certificate? What information do you need to bring?
A copy of the business license of the enterprise as a legal person; Copy of organization code certificate; Copy of tax registration certificate; Local tax ca certificate u disk; Official seal. How much is the handling fee? 1. Bring a copy of the business license (photocopy) and a copy of the tax registration certificate (stamped with the official seal of the company) and a USB flash drive during the processing, and apply for downloading in the local tax hall window; Note: the handler should carry his ID card; 2, the use of CA certificate After obtaining the CA certificate, double-click the CA certificate in the computer to complete the import and installation; CA certificate is an electronic document to confirm identity and ensure the security of online information when applying online. Taxpayers shall properly keep the relevant documents and passwords of certificates and shall not disclose or give them to others. Taxpayers use the user name and download password obtained at the time of payment to download CA certificates from the Internet. Taxpayers have the responsibility to keep the user name and password of the download certificate confidential. After the first successful login, please modify the download password yourself and remember the password.