We are independent & ad-supported. We may earn a commission for purchases made through our links.
EasyTechJunkie
Advertiser Disclosure
Our website is an independent, advertising-supported platform. We provide our content free of charge to our readers, and to keep it that way, we rely on revenue generated through advertisements and affiliate partnerships. This means that when you click on certain links on our site and make a purchase, we may earn a commission. Learn more.
How We Make Money
We sustain our operations through affiliate commissions and advertising. If you click on an affiliate link and make a purchase, we may receive a commission from the merchant at no additional cost to you. We also display advertisements on our website, which help generate revenue to support our work and keep our content free for readers. Our editorial team operates independently of our advertising and affiliate partnerships to ensure that our content remains unbiased and focused on providing you with the best information and recommendations based on thorough research and honest evaluations. To remain transparent, we’ve provided a list of our current affiliate partners here.
Security

Our Promise to you

Founded in 2002, our company has been a trusted resource for readers seeking informative and engaging content. Our dedication to quality remains unwavering—and will never change. We follow a strict editorial policy, ensuring that our content is authored by highly qualified professionals and edited by subject matter experts. This guarantees that everything we publish is objective, accurate, and trustworthy.

Over the years, we've refined our approach to cover a wide range of topics, providing readers with reliable and practical advice to enhance their knowledge and skills. That's why millions of readers turn to us each year. Join us in celebrating the joy of learning, guided by standards you can trust.

What is a Certificate Authority?

By R. Kayne
Updated: May 16, 2024

A Certificate Authority (CA) is a trusted third party that issues digital certificates, mainly to online businesses. The Certificate Authority vouches for the identification of the business as an assurance to anyone exchanging personal information such as name, address, credit card, bank records or medical records. All such information is traded in encrypted form between the two parties, with the digital certificate acting as a positive ID of trust to the public.

Since it is easy for any thief with a modicum of skills to create a website and impersonate a legitimate business for the purpose of stealing personal information from visitors, digital certificates have become a necessity. The Certificate Authority requires information from the applying business such as name, address, phone, physical data such as faxed records, and the business's public encryption key, used to encrypt all sensitive data it collects from its customers. Other records and personal interviews might also be required.

Once a web business has met the requirements, the Certificate Authority issues a digital certificate that binds the ID and public encryption key to the website's secure server. When a customer connects to the secure server, the digital certificate issued by the Certificate Authority will be passed to the customer's browser. The browser checks it to make sure it's in order before accepting the encrypted session.

The trust placed in digital certificates is only as good as the Certificate Authority that issues them. For this reason, if the CA is not recognized, the browser will pop up a warning stating so. Newer Certificate Authorities that are not yet recognized might have their own digital certificate signed by a better-known CA. You might wonder why someone would get a digital certificate from an unknown Certificate Authority. The answer for smaller businesses is probably affordability.

Though digital certificates are most often issued to businesses or organizations, individuals can also obtain a digital certificate from a Certificate Authority. Certain companies require this of employees who want to take advantage of conveniences such as online union services. The digital certificate verifies the identity of the employee requesting personal services. Fees for digital certificates vary between Certificate Authorities, but in general digital certificates issued to individuals are less expensive than those issued to businesses. Commonly, fees cover a one to three-year period, then must be renewed to keep the certificate current.

EasyTechJunkie is dedicated to providing accurate and trustworthy information. We carefully select reputable sources and employ a rigorous fact-checking process to maintain the highest standards. To learn more about our commitment to accuracy, read our editorial process.
See our Editorial Process Share Feedback

Related Articles

Discussion Comments
By anon786 — On May 04, 2007

Please correct my understanding.

->An organization has to get digital certificate using the name, address, encryption key, from a third party.

->when a customer connects to the secure server, this certificate is sent to the browser which verifies it.

Share
EasyTechJunkie, in your inbox

Our latest articles, guides, and more, delivered daily.

EasyTechJunkie, in your inbox

Our latest articles, guides, and more, delivered daily.