Appendix B. Creating and Installing WebServer Certificates
This appendix describes how to install a web server, create a public/private key pair, and obtain a certificate for your web server. The process is described here in detail to give you a feel for how the mechanics of the process work. However, as it is likely that you will be performing this process with different software from that described here, you should refer to your own documentation before beginning the procedure.
To set up a cryptographically enabled web server, you must complete these steps:
Obtain a web server (either by downloading it over the Internet or by purchasing media or a computer containing the web server).
Install it.
Create a secret/public key pair for your web server.
Optionally create your own self-signed certificate so you can get your secure web server running immediately.
Send the public key to a certification authority (CA).
Send other, supporting documents to the certification authority.
Receive your signed X.509 v3 public certificate from the certification authority.
Install the certificate on your web server.
This appendix shows the process, using the Stronghold web server as a sample web server and VeriSign as a sample CA.
Downloading and Installing Your Web Server
On March 4th, 1996, Simson received the following electronic mail message:
Date: Mon, 4 Mar 1996 15:40:52 -0800 (PST) To: vin@vineyard.net From: ApacheSSL Sales <apachessl@c2.org> Subject: Do you need to provide your customers with SSL? ...
Get Web Security and Commerce now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
