X.509 certificates
E6784
X.509 certificates are digital documents that bind a public key to an entity’s identity using a trusted certificate authority, forming the basis of public key infrastructure for secure communications.
Aliases (7)
- X.509 certificate ×64
- ITU-T Recommendation X.509 ×2
- X.509 ×2
- Public Key Infrastructure ×1
- X.509 v1 ×1
- X.509 v2 ×1
- X.509 v3 ×1
Statements (64)
| Predicate | Object |
|---|---|
| instanceOf |
digital certificate
→
public key infrastructure component → |
| canContainExtension |
CRL distribution points
→
authority information access → authority key identifier → basic constraints → certificate policies → extended key usage → key usage → subject alternative name → subject key identifier → |
| definedBy |
ITU-T Recommendation X.509
→
|
| encodedAs |
ASN.1
→
|
| hasComponent |
extensions
→
issuer distinguished name → serial number → signature algorithm identifier → signature value → subject distinguished name → subject public key info → validity period → version → |
| hasField |
issuer
→
notAfter → notBefore → public key → signature → subject → |
| hasVersion |
X.509 v1
→
X.509 v2 → X.509 v3 → |
| issuedBy |
certificate authority
→
|
| reliesOn |
certificate authority trust model
→
intermediate certificate → root certificate → |
| requires |
private key for corresponding public key
→
|
| serializedAs |
DER
→
PEM → |
| standardizedBy |
ISO
→
ITU-T → |
| supportsRevocationVia |
certificate revocation list
→
online certificate status protocol → |
| trustEstablishedBy |
root certificate store
→
trust anchor → |
| usedFor |
authentication
→
binding a public key to an identity → client authentication → code signing → confidentiality → document signing → email protection → integrity → non-repudiation → server authentication → |
| usedIn |
public key infrastructure
→
|
| usedInProtocol |
HTTPS
→
IPsec → LDAP over TLS → S/MIME → SSH (via certificate-based keys) → SSL → TLS → |
| verifiedBy |
certificate authority
→
relying party → |
Referenced by (21)
| Subject (surface form when different) | Predicate |
|---|---|
|
RFC 4346
→
SSL → SSL 2.0 → SSL 3.0 → TLS 1.0 → |
supports |
|
HTTPS
→
RFC 2246 → RFC 5246 → S/MIME → TLS 1.1 → |
uses |
|
X.509 certificate
("X.509 v1")
→
X.509 certificate ("X.509 v2") → X.509 certificate ("X.509 v3") → |
hasVersion |
|
PKCS #1
("X.509")
→
RFC 3546 → |
relatedTo |
|
X.509 certificate
("ITU-T Recommendation X.509")
→
|
definedBy |
|
ITU-T Recommendations
("ITU-T Recommendation X.509")
→
|
hasPart |
|
ITU Telecommunication Standardization Sector
("X.509")
→
|
notableStandard |
|
S/MIME
("Public Key Infrastructure")
→
|
requires |
|
ASN.1
→
|
usedIn |
|
TLS
→
|
usesMechanism |