Certificate Authority

By using TLS, TIBCO MFT Platform Server for IBM i uses certificate authority (CA) to certify the certificate that is received from the sender in a data transfer. To make sure the CA that issued the digital certificate can be trusted, the platform server with TLS uses a Trusted CA file.

In a data transfer, a CA issues a digital signature and adds the digital signature to the certificate that is received from the sender. A digital signature is simply a piece of data that is encrypted by using the private key of the certificate authority. The receiver uses the public key from the sender to decrypt and validate the data. When the certificate is checked, you can see the CA that created the certificate. To make sure the CA that issues the digital certificate can be trusted, the platform server uses a Trusted CA file to define the CAs that SSL/TLS trusts. The platform server with SSL/TLS checks the Trusted CA file to see whether the CA that issues the digital certificate is listed in the file. If the CA is in the Trusted CA file, the platform server with SSL/TLS uses the public key to decrypt and validate the digital signature in the certificate that is received from the sender in a data transfer. The platform server with SSL/TLS only accepts a certificate request when the CA that issues the digital certificate is in the Trusted CA file and the digital signature is valid.

Certificates use the Base64 encoding format. The following example shows a sample certificate that is encoded in the Base64 format:

Contents

Index

Search Results

Certificate Authority