The format of digital certificates generally adopts the X.509 V3 international standard. A standard X.509 digital certificate contains the following contents:
1. Certificate version information ;
2. The serial number of the certificate. Each certificate has a unique certificate serial number;
3. The signature algorithm used by the certificate;
4. The name of the issuing organization of the certificate. The naming rule generally adopts the X.500 format;
5. The validity period of the certificate. Common certificates generally use the UTC time format, and its timing range is 1950-2049;
p>
6. The name of the certificate owner (Subject), the naming rules generally adopt the X.500 format;
7. The public key of the certificate owner;
8. Certificate issuer's signature on the certificate.
Extended information
Digital certificates mainly have the following three characteristics:
First, security.
When a user applies for a certificate, there will be two different certificates, one for the work computer and one for verifying the user's information interaction. If the computers used are different, the user needs to re-obtain the computer used to verify the user. The certificate cannot be backed up, so even if others steal the certificate, they cannot obtain the user's account information, thus protecting the account information.
Second, uniqueness.
Digital certificates grant corresponding access rights based on the user's identity. If the user changes the computer to log in to the account, and the user does not have a certificate backup, the user cannot perform the operation and can only view the account information.
Third, convenience.
Users can apply for, activate and use digital certificates immediately, and can choose the corresponding digital certificate protection technology according to user needs. Users do not need to master encryption technology or principles, and can directly use digital certificates for security protection, which is very convenient and efficient.