Managing certificates from a public Internet CA
When you use Digital Certificate Manager (DCM) to manage certificates from a public Internet CA, you must first create a certificate store. A certificate store is a special key database file that DCM uses to store digital certificates and their associated private keys.
After careful review of your security needs and policies, you have decided that you want to use certificates from a public Internet Certificate Authority (CA), such as VeriSign. For example, you operate a public Web site and want to use the Transport Layer Secuirty (TLS) for secure communication sessions to ensure the privacy of certain information transactions. Because the Web site is available to the general public, you want to use certificates that most Web browsers can recognize readily.
Or, you develop applications for external customers and want to use a public certificate to digitally sign the application packages. By signing the application package, your customers can be sure that the package came from your company and that unauthorized parties have not altered the code while it was in transit. You want to use a public certificate so that your customers can easily and inexpensively verify the digital signature on the package. You can also use this certificate to verify the signature before sending the package to your customers.
You can use the guided tasks in DCM to centrally manage these public certificates and the applications that use them for establishing TLS connections, signing objects, or verifying the authenticity of digital signatures on objects.
Manage public certificates
When you use DCM to manage certificates from a public Internet CA, you must first create a certificate store. A certificate store is a special key database file that DCM uses to store digital certificates and their associated private keys. DCM allows you to create and manage several types of certificate stores based on the types of certificates that they contain.