Introduction To Certificates And Ssl; About Digital Certificates - Sun Microsystems GlassFish Enterprise Server 2.1 Administration Manual

Hide thumbs Also See for GlassFish Enterprise Server 2.1:

Tuning manual (128 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

page of 256

/ 256
Contents
Table of Contents
Bookmarks

Table of Contents

Introduction to Certificates and SSL

Assign a security role to users in the realm.

To assign a security role to a user, add a security-role-mapping element to the deployment

descriptor that you modified in

The following example shows a security-role-mapping element that assigns the security role

Employee to user Calvin.

<security-role-mapping>

</security-role-mapping>

Introduction to Certificates and SSL

The following topics are discussed in this section:

"About Digital Certificates" on page 108

■

"About Secure Sockets Layer" on page 109

■

About Digital Certificates

Digital certificates (or simply certificates) are electronic files that uniquely identify people and

resources on the Internet. Certificates also enable secure, confidential communication between

two entities.

There are different kinds of certificates, such as personal certificates, used by individuals, and

server certificates, used to establish secure sessions between the server and clients through

secure sockets layer (SSL) technology. For more information on SSL, see

Layer" on page

Certificates are based on public key cryptography, which uses pairs of digital keys (very long

numbers) to encrypt, or encode, information so it can be read only by its intended recipient. The

recipient then decrypts (decodes) the information to read it.

A key pair contains a public key and a private key. The owner distributes the public key and

makes it available to anyone. But the owner never distributes the private key; it is always kept

secret. Because the keys are mathematically related, data encrypted with one key can be

decrypted only with the other key in the pair.

A certificate is like a passport: it identifies the holder and provides other important information.

Certificates are issued by a trusted third party called a Certification Authority (CA). The CA is

analogous to passport office: it validates the certificate holder's identity and signs the certificate

so that it cannot be forged or tampered with. Once a CA has signed a certificate, the holder can

present it as proof of identity and to establish encrypted, confidential communications.

108

Sun GlassFish Enterprise Server 2.1 Administration Guide • December 2008

<role-name>Employee</role-name>

<principal-name>Calvin</principal-name>

109.

Step

"About Secure Sockets

Table of Contents

Chapters

Table of Contents

Introduction To Certificates And Ssl; About Digital Certificates - Sun Microsystems GlassFish Enterprise Server 2.1 Administration Manual

Introduction to Certificates and SSL

About Digital Certificates

Chapters

Related Manuals for Sun Microsystems GlassFish Enterprise Server 2.1

Related Content for Sun Microsystems GlassFish Enterprise Server 2.1

Table of Contents