while searching about security issues i hear this "Browsers and the JDK itself come with built-in certificates and their public keys from several CAs"..
Can any one help me to find out the process to identify 开发者_StackOverflowbrowsers built-in public key.. Is my question reasonable?
Make sure you have a pristine new install of the browser in question.
Use the browser Preferences/Options menus to find the list of pre-installed CA certificates:
On my Firefox 3.6.15 browser that is at Edit->Preferences->Advanced->Encryption->View Certificates->Authorities
On my Chromium it's at Preferences->Under the Hood->Security->Manage certificates->Authorities
Any other browser should be somewhat similar in this respect, although the list of pre-installed CA will probably differ when it comes to some of the more minor CAs.
精彩评论