[security-dev 00882]: Re: CR 6847459 Created, P3 java/classes_secu Allow trust anchor self-issued intermediate version 1 and version 2 certificate
Xuelei Fan
Xuelei.Fan at Sun.COM
Wed Jun 3 11:24:23 UTC 2009
Florian Weimer wrote:
> What does self-issued mean? Is it the same as self-signed? Wouldn't
> it break the chain in that case?
>
>
Self-issued certificates are those certificates in which the subject and
issuer are the same entity. Self-signed certificate is a sub type of
self-issued certificate, where the key bound to the certificate is also
used to sign the certificate.
None-self-signed certificate could be one intermediate CA certificate
inside of a certification path.
There is a blog,
http://blogs.sun.com/xuelei/entry/undertanding_self_issued_certificate,
talking about a few notes about self-issued certificates.
Xuelei
More information about the security-dev
mailing list