friedkiwi/ibm-information-center
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
14ed2849c6
ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzaj4_5.4.0.1/rzaj45bydigitalcerts.htm

94 lines
6.6 KiB
HTML
Raw Blame History

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="concept" />
<meta name="DC.Title" content="Using digital certificates for SSL" />
<meta name="abstract" content="Digital certificates provide the foundation for using the Secure Sockets Layer (SSL) for secure communications and as a stronger means of authentication." />
<meta name="description" content="Digital certificates provide the foundation for using the Secure Sockets Layer (SSL) for secure communications and as a stronger means of authentication." />
<meta name="DC.Relation" scheme="URI" content="rzaj45zhcryptointro.htm" />
<meta name="DC.Relation" scheme="URI" content="rzaj45raddingtelnet.htm" />
<meta name="DC.Relation" scheme="URI" content="rza45zkaddingclientaccess.htm" />
<meta name="DC.Relation" scheme="URI" content="rzaj45zhcryptointro.htm" />
<meta name="DC.Relation" scheme="URI" content="../rzahu/rzahurzahu401usingdcm.htm" />
<meta name="DC.Relation" scheme="URI" content="../rzalx/rzalxsecterms.htm" />
<meta name="DC.Relation" scheme="URI" content="../rzain/rzainoverview.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 1999, 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 1999, 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rzaj45bydigitalcerts" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>Using digital certificates for SSL</title>
</head>
<body id="rzaj45bydigitalcerts"><a name="rzaj45bydigitalcerts"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">Using digital certificates for SSL</h1>
<div><p>Digital certificates provide the foundation for using the Secure
Sockets Layer (SSL) for secure communications and as a stronger means of authentication.</p>
<p>The iSeries™ server
provides you with the ability to easily create and manage digital certificates
for your systems and users with Digital Certificate Manager (DCM), an integrated
feature of i5/OS™.</p>
<p> Additionally, you can configure some applications,
such as the IBM<sup>®</sup> HTTP
Server for iSeries,
to use digital certificates for a stronger method of client authentication
instead of user name and passwords.</p>
<div class="section"><h4 class="sectiontitle">What is a digital certificate?</h4><p>A digital certificate
is a digital credential that validates the identity of the certificate owner,
much as a passport does. A trusted third party, called a <strong>Certificate authority
(CA),</strong> issues digital certificates to users and
servers. The trust in the CA is the foundation of trust in the certificate
as a valid credential.</p>
<p><img src="./delta.gif" alt="Start of change" />Each CA has a policy to determine
what identifying information the CA requires in order to issue a certificate.
Some Internet CAs may require very little information, such as only requiring
a distinguished name. This is the name of the person or server to whom a CA
issues a digital certificate address and a digital e-mail address. A private
key and a public key are generated for each certificate. The certificate contains
the public key, while the browser or a secure file stores the private key.
The keypairs associated with the certificate can be used to "sign" and encrypt
data, such as messages and documents, sent between users and servers. Such
digital signatures ensure the reliability of an item's origin and protects
the integrity of the item.<img src="./deltaend.gif" alt="End of change" /></p>
<p>Although many applications cannot take advantage
of SSL yet, many others, like Telnet and iSeries Access Express, have added SSL
capability. To learn how you can use SSL with iSeries applications, see <strong>Securing
applications with SSL</strong> in the <span class="keyword"><img src="./delta.gif" alt="Start of change" />IBM Systems Software Information Center<img src="./deltaend.gif" alt="End of change" /></span>.</p>
</div>
</div>
<div>
<ul class="ullinks">
<li class="ulchildlink"><strong><a href="rzaj45raddingtelnet.htm">SSL for secure Telnet access</a></strong><br />
You can configure your Telnet server to use the Secure Sockets Layer (SSL) to secure Telnet communications sessions.</li>
<li class="ulchildlink"><strong><a href="rza45zkaddingclientaccess.htm">SSL for secure iSeries Access Express</a></strong><br />
You can configure your iSeries Access Express servers to use
the Secure Sockets Layer (SSL) to secure iSeries Access Express communications
sessions.</li>
</ul>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="rzaj45zhcryptointro.htm" title="Use this information to learn about the security measures that you can use to protect your data as it flows across an untrusted network, such as the Internet. Learn more about security measures for using the Secure Sockets Layer (SSL), iSeries Access Express, and Virtual Private Network (VPN) connections.">Transmission security options</a></div>
</div>
<div class="relconcepts"><strong>Related concepts</strong><br />
<div><a href="rzaj45zhcryptointro.htm" title="Use this information to learn about the security measures that you can use to protect your data as it flows across an untrusted network, such as the Internet. Learn more about security measures for using the Secure Sockets Layer (SSL), iSeries Access Express, and Virtual Private Network (VPN) connections.">Transmission security options</a></div>
<div><a href="../rzahu/rzahurzahu401usingdcm.htm">Digital Certificate Manager</a></div>
<div><a href="../rzain/rzainoverview.htm">Securing applications with SSL</a></div>
</div>
<div class="relref"><strong>Related reference</strong><br />
<div><a href="../rzalx/rzalxsecterms.htm">Security terminology</a></div>
</div>
</div>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink