What is a Certificate Authority?

Starting from the definition: A certificate authority or certification authority (CA) is an entity that issues digital certificates.

There are two types of certificate authorities:

  • A public certificate authority (public CA) is a third party that browsers, individuals, operating systems, and applications implicitly trust to issue digital certificates for use in public channels.
  • A private certificate authority (private CA) is an internal entity that issues digital certificates that are only known and trusted inside the organization’s internal network and IT environment.

Therefore, a public CA plays a key role in creating a chain of external trust. Becoming a public CA requires resources, money and certain requirements that have to be met as a minimum. Trusted CA’s need to undergo regular audit checks by independent parties, adhere to industry guidelines and maintain best practices to secure their infrastructure.

Public CA’s play a critical role in the operation of the internet and how transparent, trusted transactions can take place online. Without certificate authorities; shopping, banking and browsing the internet would be less secure. Certificate authorities validate organizations, people and devices by issuing digital certificates, and it is these certificates that are used to encrypt transactions, protect information and to enable secure communication. Prior to issuing a digital certificate, the CA needs to carry out a validation process, checking the identity of the applicant. Depending on the type of certificate required, information such as site ownership, name, location and company checks may be necessary.

Here are some examples of digital certificate use cases:



Source: Utimaco


Another successful HSM training

Technical training on HSMCREAplus successfully delivered another online hands-on technical training on Utimaco hardware security module (HSM).

Read more ...

Protecting digital identities

Protecting Digital Identities, 14 September 2022, Vienna, AustriaWould you like to get the latest information on PKI & IoT, eSigning & eIDAS and PQC?Join us on 14 September 2022 in Vienna! 

Read more ...

CREAplus obtained the Excellent SME certificate

Excellent SMECREAplus received the Excellent SME certificate, issued by the Chamber of Commerce and Industry and credit rating agency Coface.


Read more ...

Protecting Digital Identities - Save the Date!

Excellent SMESave the date! Plan to attend our event "Protecting Digital Identities" on Wednesday, 14 September 2022, in Vienna, Austria. 

Read more ...

u.trust 360 v4.0 - Centralized Management and Monitoring Platform

u.trust 360 v4.0u.trust 360 v4.0 - the next generation of easy and convenient HSM administration is available now! 

Read more ...