In order to use the proXSign® components, a valid digital certificate is needed. In this section is explained what a digital certificate is, how to get a valid certificate, how to install the certificate in the preferred browser and how is proXSign® processing the certificates.

What is a digital certificate?

Digital certificates are data structures containing key information for PKI (Public Key Infrastructure) cryptography. Each digital certificate contains a public key, metadata information (such as information for the person using it, for the CA that issued it, expire date) and possibly the private key.

Here is an example of digital certificate that belongs to Janez Novak. 

Certificates are usually issued by entities called certification authorities (CAs). Those certification authorities keep track of certificate usage and possible compromises of the issued certificates private keys. All the public information (excluding the private key) in the certificate data structure is signed and its data integrity is guarded by a signature generated with another certificate belonging to the CA. This certificate is called the issuer certificate. The issuer certificate may itself be signed with another higher level CA certificate. In this way a chain of trust is constructed. Top level certificates are usually self signed – the certificate public data is guarded with the certificate own private key.

How to obtain a digital certificate?

The information on how you can obtain a digital certificate is located on CAs websites. Please check the web page of your preferred authority.