I have browsed 30 pages tagged with "certificates" and used google. I have searched, but could not find conclusive answers. For now I am keen on knowing if and how Windows/IIS protects a certificate or private key not using option 3. How is IIS able to use the certificate in Windows if no one enters it's password? Or is just stored in the registry instead of a config file? And is setting high certificate security equal to option 2?Ĭould anyone explain to me how this works?ītw. I am not familiar with how Windows or IIS handle this, but expect this works somehow similar under the hood. This reasoning led to the conclusion I started with. It seems though that linux offers more options to separate access to those files for different processes. Obviously you can filesystem protect the keystore and config file. But anyone with access to this file and the keystore is able to extract the private key.
0 Comments
Leave a Reply. |