X.509

Jan 1, 0001

Definition

X.509 is a standard format for public key certificates, which are used to verify the identity of entities and facilitate secure communication over networks. These certificates contain a public key, the identity of the entity associated with the key, and are digitally signed by a trusted Certificate Authority (CA). X.509 certificates are widely used in protocols such as SSL/TLS to establish secure connections and ensure data integrity and confidentiality.

Secure Settings Example

# Example of a secure X.509 certificate configuration in an Nginx server
server {
    listen 443 ssl;
    server_name example.com;

    ssl_certificate /etc/ssl/certs/example.com.crt;
    ssl_certificate_key /etc/ssl/private/example.com.key;
    ssl_protocols TLSv1.2 TLSv1.3;
    ssl_ciphers 'ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384';
    ssl_prefer_server_ciphers on;
}

Insecure Settings Example

# Example of an insecure X.509 certificate configuration in an Nginx server
server {
    listen 443 ssl;
    server_name example.com;

    ssl_certificate /etc/ssl/certs/example.com.crt;
    ssl_certificate_key /etc/ssl/private/example.com.key;
    ssl_protocols SSLv3 TLSv1;
    ssl_ciphers 'RC4:DES:MD5';
    ssl_prefer_server_ciphers off;
}

X.509

Definition

Secure Settings Example

Insecure Settings Example

Ask AppSec: free security newsletter

Ask AppSec: free security newsletter