ZyXEL MAX-306 User Guide - Page 200
Verifying a Certificate
View all ZyXEL MAX-306 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 200 highlights
Chapter 15 The Certificates Screens • The WiMAX Device only has to store the certificates of the certification authorities that you decide to trust, no matter how many devices you need to authenticate. • Key distribution is simple and very secure since you can freely distribute public keys and you never need to transmit private keys. 15.4.1.2 Self-signed Certificates You can have the WiMAX Device act as a certification authority and sign its own certificates. 15.4.1.3 Factory Default Certificate The WiMAX Device generates its own unique self-signed certificate when you first turn it on. This certificate is referred to in the GUI as the factory default certificate. 15.4.1.4 Certificate File Formats Any certificate that you want to import has to be in one of these file formats: • Binary X.509: This is an ITU-T recommendation that defines the formats for X.509 certificates. • PEM (Base-64) encoded X.509: This Privacy Enhanced Mail format uses lowercase letters, uppercase letters and numerals to convert a binary X.509 certificate into a printable form. • Binary PKCS#7: This is a standard that defines the general syntax for data (including digital signatures) that may be encrypted. A PKCS #7 file is used to transfer a public key certificate. The private key is not included. The WiMAX Device currently allows the importation of a PKS#7 file that contains a single certificate. • PEM (Base-64) encoded PKCS#7: This Privacy Enhanced Mail (PEM) format uses lowercase letters, uppercase letters and numerals to convert a binary PKCS#7 certificate into a printable form. Note: Be careful to not convert a binary file to text during the transfer process. It is easy for this to occur since many programs use text files by default. 15.4.2 Verifying a Certificate Before you import a certificate into the WiMAX Device, you should verify that you have the correct certificate. This is especially true of trusted certificates since the WiMAX Device also trusts any valid certificate signed by any of the imported trusted certificates. 200 User's Guide