What is the difference between signing a certificate and an encryption certificate?

Question

What is the difference between signing a certificate and an encryption certificate?

I see that the signature certificate cannot be used to encrypt only the data encryption certificate. What is the technical difference? Both have a public key and a private or only encryption certificate will have a PP key?

+4

public key digital-certificate

M raji 15 sept. '09 at 8:46

source share

3 answers

Richard · Answer 1 · 2009-09-15T09:05:22+0000

The only difference is the value of the target field in the certificate. The issuer of the certificate chooses for what purpose the certificate is created.

Martin paljak · Answer 2 · 2009-11-07T14:26:15+0000

The certificate contains only a public certificate. Nothing can stop you from using the private key for any things you want to do with it.

As mentioned earlier, the certificate for the other side must deal - after you have signed or encrypted something, the other side must make a decision if it is satisfied. He then checks the certificate and its flags to make sure that it can be used for the operation, in accordance with the policies set for the other party.

Haitao li · Answer 3 · 2012-06-15T23:03:37+0000

In addition to the "key usage" fields in certificates, some key pairs use algorithms that can only perform signature or encryption (key exchange). For example, DH and DSA. RSA is good for both, so technically you can do whatever you want. But, as the other answers pointed out, a code that verifies your signature will probably reject it because the certificate was used for the wrong purpose.

What is the difference between signing a certificate and an encryption certificate?

More articles: