fir3net
PPS-Firenetbanner-780.5x190-30-03-17

Digital Certificates vs Digital Signatures

Digital Signatures

A Digital Signature is a method to ensure data authenticity. A digital signature is created by generating a hash (message digest) against the data and then encrypting this digest using the cryptography (public or private) key. This signature is then appended to the data. 

Once the recipient has received the data + signature they generate a hash against the data, as well as decrypting the signature using their cryptography (public or private) key. These digests are then compared to ensure data authenticity.

Digital Certificates

A Digital certificate is a form of electronic credentials. Digital certificates are issued by a Certification Authority (CA) and are used to encrypt and sign digital information. Digital Certificates typically contain the Owner's public key/name, expiration date of the public key, Name of the issuer (CA), Serial number and the Digital signature of the issuer (CA).

Reference : http://www.pgpi.org/doc/pgpintro/#p12

About the Author

RDonato

R Donato

Rick Donato is the Founder and Chief Editor of Fir3net.com. He currently works as a Principal Network Security Engineer and has a keen interest in automation and the cloud.

You can find Rick on Twitter @f3lix001