A host whose server certificate cannot be validated by a trusted certificate in the Trust Store.

A certificate that will be used to create a Certificate Signing Request. A base certificate may be a default certificate created by Workbench or a JACE on system start-up, or a certificate you create using the SSL Toolset.

A certificate whose private key is used to digitally sign other certificates. With only its public key, this certificate may be downloaded from the internet or sent via email. Do not download or send it with its private key unless it is heavily encrypted and in a ZIP file with a strong password.

A browser, Workbench, JACE, Supervisor or program (process) that seeks information from a server in a NiagaraAX network.

The certificate with its public key (no private key) that resides on the client Trust Store. See also CA certificate, Intermediate certificate, and Root certificate.

An entity (certification authority) that issues digital certificates to certify the ownership of a public key by the named subject of the certificate. This allows others to rely upon the signature presented by the subject and use its key pair (public and private) to encrypt data.

A general name for an electronic file that establishes a user’s credentials when doing business or other transactions over the internet. A digital certificate contains the subject, expiration dates, copy of the certificate holder’s public key (used to encrypt messages and digital signatures), and the purpose of the certificate (server, intermediate or root certificate).

The certificate may be signed by a Certificate Authority (CA), or it may be self-signed.

See also CA certificate, Self-signed certificate, Root certificate, and Server certificate.

A location for storing a certificate with both its public and private keys.

The process of using a pair of keys to scramble data at the sending end of a communication, and unscramble the data at the receiving end.

The initial exchange of certificates between a client and server that establishes a communication session.

A certificate between the root certificate and server certificate in a certificate chain of trust. An intermediate certificate is signed by the private key of the root certificate or another intermediate certificate. During identity verification, the signature of the server certificate is validated using the signature of the intermediate certificate, whose signature is, in turn, validated against the root certificate’s signature.

The use of intermediate keys isolates servers. If one key is compromised the entire network is not threatened.

A software entity based on prime numbers and used to encrypt data. For encryption to remain secure the private key must be physically protected.

One of these NiagaraAX entities that provides communication services within a NiagaraAX network: Niagarad, Fox Service, and Web Service.

A set of rules that facilitates information exchange within a computer system, between computers, and between a client and server.

A software entity based on prime numbers and used to encrypt data. This key matches its private key and may be distributed freely.

A self-signed certificate that is implicitly trusted and used to sign other certificates. See also CA certificate.

A commonly-used protocol for managing the security of message transmission over the internet. SSL uses encryption keys and includes a digital certificate.

See also Transport Layer Security (TLS)

A certificate that has not been signed by a CA. It is signed, but by its own private key. In NiagaraAX no separate step or procedure is required to self-sign a certificate. When first generated each certificate is self-signed by default.

A platform or program (process) that offers information to another platform, program browser or Workbench in a NiagaraAX network. See NiagaraAX’s client/server architecture for a description of the various roles within a NiagaraAX network.

A certificate that is used primarily by the JACE or Supervisor station/platform for encryption. In NiagaraAX, the private key of a server certificate is not used to sign other certificates. See also Certificate, CA Certificate.

A commonly-used protocol for managing the security of message transmission over the internet. TLS uses encryption keys and includes a digital certificate.

See also Secure Socket Layer (SSL).

A location for storing a trusted certificate with its public key. The Trust Store contains no private keys.