Win a copy of Secure Financial Transactions with Ansible, Terraform, and OpenSCAP this week in the Cloud/Virtualization forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Ron McLeod
  • Paul Clapham
  • Jeanne Boyarsky
  • Bear Bibeault
Sheriffs:
  • Rob Spoor
  • Henry Wong
  • Liutauras Vilda
Saloon Keepers:
  • Tim Moores
  • Carey Brown
  • Stephan van Hulst
  • Tim Holloway
  • Piet Souris
Bartenders:
  • Frits Walraven
  • Himai Minh
  • Jj Roberts

X-509 certificates

 
Ranch Hand
Posts: 142
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Is the client side certificate also an X-509 certificate???
thanks
Sridhar
 
Ranch Hand
Posts: 856
3
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
If you actually have a cert, then it is.
I say if because, unless the server specifically requires one, you can do SSL (HTTPS) without a client cert.
 
Sridhar Raman
Ranch Hand
Posts: 142
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Thanks for the response. I came across this mock question somewhere.
X509 cetificates are certificates installed on the
1. Server 2. Client. 3. blah 4. blah
As you have mentioned, client side certificates are optional in SSL. My question is, what will you choose here??? 1? 1 and 2? or reject the question as ambiguous?
thanks
Sridhar
[ February 27, 2002: Message edited by: Sridhar Raman001 ]
 
Burk Hufnagel
Ranch Hand
Posts: 856
3
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
The "correct" (IMO) answer is both Client and Server. However, I've found that many times you must guess at what they meant to ask and not just what the question says. Sometimes the context can give a clue.
If they aren't referencing "mutual" authentication in some way, then I suspect they expect you to pick the Server as the answer since that's where you will ususally see an X.509 cert.
 
Uh oh, we're definitely being carded. Here, show him this tiny ad:
SKIP - a book about connecting industrious people with elderly land owners
https://coderanch.com/t/skip-book
reply
    Bookmark Topic Watch Topic
  • New Topic