[cryptography] Security Pop-Up of the Day

James A. Donald jamesd at echeque.com
Thu Sep 22 19:18:06 EDT 2011


On Thu, Sep 22, 2011 at 09:37:42AM +1000, James A. Donald wrote:
>> Email client generates private/public keypair.  Sends public key to CA
>> server.  CA server certifies that the owner of the private key
>> corresponding to this public key is capable of receiving email at the
>> address, emails certificate it back to ostensible email address.

On 2011-09-22 8:35 PM, Paul Walker wrote:
> User changes email client, or has two clients on different machines. Second
> certificate is received by CA server. Does it now certify both keys?

Sure - what the certificate is a certificate of is that the holder of 
the corresponding private key can receive email at this address.  He 
should have as many certificates as he has email clients.




More information about the cryptography mailing list