A talk on the CACert certification authority I gave to the Triangle Linux Users Group ( http://www.trilug.org/ ) back in May 2006. CACert is currently undergoing a bunch of changes so there's no guarantee how up to date this is or will remain.
1. CACert
Tanner Lovelace
Triangle Linux Users Group
11/May/2006
2. Outline
What is SSL and why do we need it?
What is a Certificate Authority?
What is CACert?
How does CACert verify identity?
How do I use CACert?
Conclusion and Mass Assurance
3. How Does the Web Work?
Client-server
No verification or encryption (in standard
model)
4. Problems with Standard Web
Susceptible to
eavesdropping
Man-in-the-middle
(i.e. transparent
proxies)
5. The Web with SSL
Encryption of Traffic
Verification of Identity