SSL Certificate Glossary

ACME (Automated Certificate Management Environment) is a protocol that automates the process of issuing, renewing, and managing SSL certificates, eliminating the need for manual intervention.

Security vulnerability exploiting CBC mode in SSL 3.0 and TLS 1.0...

An entity that issues and manages SSL certificates

The sequence of certificates from end-entity to trusted root

Verification that the certificate chain is complete and trusted...

The date when the SSL certificate will expire and become invalid...

The date when the Certificate Authority issued the certificate...

The automated process of handling SSL certificates from start to finish (CLM), like having a personal assistant that manages all certificate tasks.

Teaching your mobile app or website to only trust specific SSL certificates, like only accepting packages from trusted delivery services.

The process of invalidating a certificate before its expiration date

The Certificate Revocation List validation result...

The current validity state of an SSL certificate

How much time is left before the certificate expires...

A public logging system that monitors certificate issuance

The specific Certificate Transparency log records for the certificate...

The Certificate Transparency logging status of the certificate...

The level of identity verification performed before certificate issuance...

The set of cryptographic algorithms used for the connection

The primary domain name this certificate is issued for

The SSL/TLS protocol version currently being used...

Basic validation that confirms domain ownership

The final certificate in the chain that identifies the server...

The highest level of validation with rigorous identity verification

The complete, specific address of a website that SSL certificates use to identify exactly which domain they protect.

A brief window after certificate expiration when some systems might still accept the certificate, though this creates security risks.

A security mechanism that forces browsers to always use the secure HTTPS version of a website, protecting against downgrade attacks.

HTTPS secures website connections by encrypting data between browsers and servers...

A certificate that sits between the root and end-entity certificates

A certificate that secures an IP address instead of a domain name

The Certificate Authority that issued this certificate

A certificate storage format specifically designed for Java applications to securely store SSL certificates and private keys.

The public key algorithm used in this certificate

The most recent time the certificate status was verified...

A security protocol where both client and server authenticate each other using certificates, providing bidirectional trust verification.

Mozilla's security toolkit that handles SSL certificates and encryption, powering Firefox and many other applications' security features.

Online Certificate Status Protocol for real-time certificate validation

The Online Certificate Status Protocol validation result...

Validation that confirms both domain ownership and organization identity

A security property that protects past communications if private keys are compromised

The entire trust system that makes SSL certificates work, like a network of official agencies that create, manage, and verify digital certificates.

Critical attack exploiting SSL 3.0 padding validation weaknesses...

Port 443 is the network port used to serve secure HTTPS traffic...

A visual barcode containing SSL certificate information that allows mobile devices to quickly verify website security status.

The top-level certificate in the trust hierarchy

A certificate that can secure multiple specific domain names

A certificate that is signed by its own private key...

Unique identifier for this certificate

The cryptographic algorithm used to sign this certificate

Allows multiple websites with different SSL certificates to share the same server address, like having multiple businesses operate from the same building.

Cryptographic protocol for secure communication, now replaced by TLS...

Security protocols that encrypt communications over networks

Additional domain names covered by this certificate

All SSL/TLS protocol versions the server can negotiate...

Modern protocol that replaced SSL for secure internet communications...

The process of establishing a secure connection between client and server

A certificate extension that identifies resources by their web address rather than just domain names, useful for specialized applications.

A security audit that identifies weaknesses, outdated settings, or configuration problems in SSL certificate implementations.

A certificate that secures a domain and all its subdomains

The international standard that defines how SSL certificates are structured and what information they must contain.

A security model that requires verification for every access attempt, making SSL certificates crucial for continuous authentication and encryption.