posted 20 years ago
The server present public key as certificate.
The cerficate is a document contains public key and again signed by the public key of CA.
The Browser knows the CA. I is hard coded inside Explorer, I think, since I can not find where to specify it.
Browser trust CA, CA sign the public of https server, so if CA say the server's public is real, browser believe it.
But in JDK, it is a file. Under C:\j2sdk1.4.2_03\jre\lib\security
SCEA<br />SCJP SCJD SCWCD SCBCD