I spent my time to read some e-book related to Security+ Certification on Identifying the Components of a Public Key Infrastructure. It is quite easy to understand compare with the book that I read before.
This summary should I bare in my mind, always:
- Using asymmetric keys without a supporting infrastructure is not scalable to a large environment. A public key infrastructure (PKI) uses asymmetric key pairs and combines software, encryption technologies, and services to provide a means of protecting the security of communications and business transactions.
- A certificate is a digital representation of information that identifies you as a relevant entity by a trusted third party (TTP).
- A certification authority (CA) is an entity that is recognized as an authority trusted by one or more users or processes to issue and manage certificates.
- A certificate revocation list (CRL) is a list of certificates issued by a CA that are no longer valid.