Certificate Validation
Verify server identity.
Why Validate Certificates?
Encryption alone is not enough. If you encrypt a connection to an attacker, you have secured the wrong conversation.
Certificate validation ensures you are really talking to the intended server.
What the Client Checks
During the handshake the client verifies several things:
- The certificate chain reaches a trusted root.
- The certificate is within its validity period.
- The certificate is not revoked.
- The hostname matches.
All lessons in this course
- The TLS Handshake
- Cipher Suites
- Certificate Validation
- Common TLS Attacks