Version: 2008
  • On mySimon: Luke Skywalker Doll
advertisementGet Smart about Business Spending

Last modified: July 25, 1997 1:00 PM PDT

Everything you need to know about digital IDs

A digital ID is used to prove who you are on the Internet--much as you use a driver's license in the physical world. A certificate authority (CA) issues digital certificates to individuals, companies, and other organizations to authenticate their identities. The CA does some checking, then issues and signs a digital certificate that vouches for who they are. Digital certs are designed to foster trust on the otherwise anonymous Internet.

What is a digital certificate?
Call it an identity card for cyberspace, your electronic credentials for the Internet. It says, "This person is who she or he claims to be." Same goes for Web sites. On the largely anonymous Net, people want proof of who they're dealing with--particularly if there's money or an exchange of information involved.

But what exactly does a digital certificate consist of?
It's an electronic document, technically called an X.509 certificate, saying who you are, How digital IDs work / go to infographic who issued the certificate, and roughly how much checking was done. It contains a "public key" (a term from the crypto guys) that's issued to you alone. Your public key links to your unique "private key."

What are public and private keys?
These keys--basically scrambled numbers--are based on public-key cryptography, a complicated science. Basically, an individual or organization gets both a public key, which is embedded in the digital certificate, and a private key. Your public key is shared with the world. Your private key should be guarded carefully--just as you would your passport if you're traveling overseas. To verify your identity, you need both.

Who issues digital certificates?
Issuers are called certificate authorities or just CAs. They're the Internet equivalent of the department of motor vehicles, the immigration authority, your bank, or your employer.

Why would I need one?
On the Net, you never know for sure whether you dealing with a legitimate business or a crook, a charming prince or an impostor. A digital certificate vouches for the identity of a person or company, confirming that he is really who he claims to be.

So can I trust anyone who has a digital certificate?
Not necessarily. A digital certificate vouches for your identity, not your character. Remember, even a bad driver can have a driver's license.

But isn't a digital certificate supposed to establish trust?
A digital certificate can help create trust by letting you know whom you're dealing with, but not much else. You still need other measures. You have to make up your own mind about trusting them.

CONTINUED: Don't know what a digital ID is for. Here are all the answers to your frequently asked questions....
Page 1 | 2
advertisement
Click Here

Latest tech news headlines

advertisement

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

More feeds available in our RSS feed index.

Markets

Market news, charts, SEC filings, and more

Related quotes

Dow Jones Industrials (-0.01%) -1.13 10,365.02
S&P 500 (0.25%) 2.73 1,102.65
NASDAQ (0.49%) 10.55 2,183.69
CNET TECH (0.28%) 4.46 1,597.14
  Symbol Lookup
advertisement
advertisement
News
News site map
Latest headlines
Contact News
News staff
Corrections
CNET blogs
Popular topics
Apple iPhone
Apple iPod
Cell phones
Dell
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET Widgets
About CNET