Question: What is an OV certificate? Answer: Organization Validated (OV) certificates are SSL certificates that undergo validation on the Organization rather than the domain. OV is not as extensive as Extended Validation (EV) but is more extensive than Domain Validation (DV). The cryptographic … [Read more...] about OV Certificate – What is an Organization Validated Certificate?
PKCS7 as SignedData, a certificate bundle and OpenSSL
Introduction to PKCS7 What is PKCS7? It is a standard in the "Public Key Cryptography Standards" used as a cryptographic message syntax and as a format for an X.509 certificate and corresponding chain. The bundle or bag does not have to be a full chain and order does not matter as the final chain … [Read more...] about PKCS7 as SignedData, a certificate bundle and OpenSSL
vault docker – docker compose example with Hashicorp Vault
What is Hashicorp Vault? Vault is software the provides secure secret management to protect sensitive data and in this article we will be demonstrating how to use vault docker to create and manage a secrets engine. Secrets may be anything from text properties or data to tokens, passwords, X509 … [Read more...] about vault docker – docker compose example with Hashicorp Vault
openssl cms – Sign and encrypt or decrypt email messages
The openssl cms utility will digitally sign, verify, encrypt and decrypt S/MIME version 3.1 mail and messages. Checkout our smime article on how to get an email certificate and extract the public and private key for use in these commands. To purchase an Email certificate, we recommend starting … [Read more...] about openssl cms – Sign and encrypt or decrypt email messages
openssl s_client commands and examples
The s_client command from OpenSSL is a helpful test client for troubleshooting remote SSL or TLS connections. The post strives to walk you through various examples of testing SSL connections with different ciphers, TLS versions, and SSL server certificate analysis. Testing SSL configuration on … [Read more...] about openssl s_client commands and examples
Keytool import certificate – keytool importcert
What is Java keytool? The Java keytool is a command-line utility used to manage keystores in different formats containing keys and certificates. You can use the java keytool to import a certificate into a keystore. In many respects, the java keytool is a competing utility with openssl for … [Read more...] about Keytool import certificate – keytool importcert
PKCS8 (PKCS #8) format – openssl pkcs8
PKCS8 is the eighth of the Public-Key Cryptography Standards (PKCS) and is a syntax for storing private key material. The private keys may be encrypted with a symmetric key algorithm. If the usage of your key requires it to be in plain text, make sure it is stored in a secured location. If at all … [Read more...] about PKCS8 (PKCS #8) format – openssl pkcs8
openssl rand – Generate random numbers and passwords
To generate random bytes with openssl, use the openssl rand utility which is the openssl random number generator. This utility utilizes a CSPRNG, a cryptographically secure pseudo-random number generator. As of v1.1.1, openssl will use a trusted entropy source provided by the operating system to … [Read more...] about openssl rand – Generate random numbers and passwords