In reality, the identity card is issued by the public security organ, and the identity certificate of the network user is issued by the digital certificate issuing and certification institution CA. Only certificates issued by CA can be authenticated in the network. CA is not a simple defense means, but integrates many cryptographic algorithms.
The data transmitted on the network is encrypted/decrypted and signed/verified by CA digital certificate, so as to ensure the confidentiality, integrity, non-repudiation and authentication of data, the authenticity of transaction entity identity and network security.
Extended data
The contents of the certificate include: information of the electronic visa authority, public key user information, public key, authority signature and validity period, etc. The format and verification method of certificates generally follow the international standard X.509
CA should formulate policies and specific steps to verify and identify the user's identity, and sign the user certificate to ensure the identity of the certificate holder and the ownership of the public key.