|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Self-signed Certificate
It is possible for the owner of a certificate to sign it themselves instead of having a recognised certification authority do so. This is unlikely to be trusted by anyone wishing to use the certificate as proof of ownership of the corresponding public key. However, a signature by the owner is still useful, especially when the owner is a certification authority which must be trusted for independent reasons, as it restricts the possibilities for malicious or accidental changes to the details contained in the SSL Cert.
Secret Key
Confusingly sometimes used to mean the private key of a public key system, and also sometimes used (in contrast to "public key") to refer to a symmetric key system.
Secure Hash
A process which reduces a message of arbitrary length to a fixed length fingerprint which is very unlikely to be the same for any other message. The word "secure" indicates that the algorithm has been chosen so that it is not possible to forge a message which to have given hash value, nor to create two similar messages with the same hash value.
Session Key
A key used for just one message or set of messages. In a typical system, a random session key is generated for use with a symmetric algorithm to encode the bulk of the data, and only the session key itself is communicated using public key encryption.
| 
