ZyXEL P-660HNU-F1 User Guide - Page 193
Certificates, 15.1 Overview, 15.1.1 What You Can Do in this What You Need to Know
View all ZyXEL P-660HNU-F1 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 193 highlights
CHAPTER 15 Certificates 15.1 Overview The ZyXEL Device can use certificates (also called digital IDs) to authenticate users. Certificates are based on public-private key pairs. A certificate contains the certificate owner's identity and public key. Certificates provide a way to exchange public keys for use in authentication. 15.1.1 What You Can Do in this Chapter • Use the Local Certificate screens to view and import the ZyXEL Device's CA-signed certificates (Section 15.2 on page 196). • Use the Trusted CA screens to save the certificates of trusted CAs to the ZyXEL Device. You can also export the certificates to a computer (Section 15.2.1 on page 197). 15.1.2 What You Need to Know The following terms and concepts may help as you read this chapter. Certification Authorities A Certification Authority (CA) issues certificates and guarantees the identity of each certificate owner. There are commercial certification authorities like CyberTrust or VeriSign and government certification authorities. Public and Private Keys When using public-key cryptology for authentication, each host has two keys. One key is public and can be made openly available; the other key is private and must be kept secure. Public-key encryption in general works as follows. 1 Tim wants to send a private message to Jenny. Tim generates a public-private key pair. What is encrypted with one key can only be decrypted using the other. 2 Tim keeps the private key and makes the public key openly available. 3 Tim uses his private key to encrypt the message and sends it to Jenny. 4 Jenny receives the message and uses Tim's public key to decrypt it. 5 Additionally, Jenny uses her own private key to encrypt a message and Tim uses Jenny's public key to decrypt the message. ADSL Series User's Guide 193