Intro to Digital Certificates

Undoubtedly, the best explanation of PKI and digital certificates. Thanks Dave!

I spent 2 hours in the class and couldn't think it through but it only took me 21 minutes to understand via this video. Thank you David!

Great video! I love how you broke it down and walked through it nicely. Thank you.

Along with great information presentation style, the presenter has a perfect knowledge reinforcement/voice/speed balance, which makes the info really sink in. No accent helps to stay focused as well.

Amazing, best digital certificate explanation on youtube!.

Very well explained Dave ! Helped clear understanding of flow between browser and webserver. Keep uploading the such great videos. Many Thanks

05:31 digital certificate 06:31 trust 06:45 CA 06:52 A certificate authority validates the identity of the certificate holder 07:21self-signed certificate 08:55 user identification 12:37 self-signed certificate 15:14 testing 15:25 self-signed certificate , root certificate 17:18

Wow! Really great explanation. Really clears up a lot of questions I had about CA, Digital certs and how TLS uses asymmetric/symmetric encryption and why symmetric is better. All of of this knowledge in one place! Thank you.

very pleased with the explanation - i watched about 4 videos about digital certificates and this is the one which got me understanding it properly.

Thank you. have seen many tutorials but this is the first one that makes complete sense to me ! Best wishes...

I've been scrambling to figure out PKI the past few days and this video really helped me glue all the pieces together to solidify my knowledge of PKI. Thank you!!!

This was really informative video . Thanks Dave ! Hope you keep creating these type of instruction content !!

The best explanation I have encountered. Made it very simple and clear. Thank you !

The best explanation video on the web. Thanks for creating this Dave.

Dave! Great video! I'm very impressed how simple is that! Thank you!

One of the best explainer videos. Very easy to understand and covers all the basics

Thanks for the tutorial, it's much faster than any other method I came across.

This is simply brilliant..and brilliantly simple..great job!!

Lovely lecture! You took enough time to explain the concepts at ease.. Thanks.

Amazing video on digital Certs, if you land here just think you got your answers with this video

Perfectly explained. Great Job. It helped me a lot. Thanks, Mr.Dave

Amazing video. Thanks Dave for making it so nice and clear.

Explanation is complete with the real time example.
Though i know these things, i still liked the way you explained.
Thanks a lot.

I have been working on my understanding of certificates and PKI. This clarified a few additional things for me. Thank you for the info and details!

One of the best explanations on this topic. Thanks Dave 👌

Thank you for sharing. This is great - explained in its most simplest form.

He is really an expert on this subject. Very well explained, understood the concept.

OMG, you answered all the questions I didn't know I had. Thank you!

Great! Finally I got the whole process. Thanks a lot!

Dave, Thank you very much for such a clear and complete explanation.

Amazing explanation! Concise and clear

PKI and Certificates are always a tricky subject. This is so far THE best video I've seen going into depth on the subject. I would recommend this video to anyone in IT.

Many Thanks !!! for your kind and detail Explanation.. God Bless You !!!

This is very helpful for the reader simply explained and with good examples. Really amazing video.

Thanks for the amazing Tutorial!

I had a doubt between public & private key but, after going through your video session I got the difference between them.

such a wonderful explanation...I really appreciate the effort

The best tutorial in the net about certificate

Thanks for this video, best explanation on the net.

Thanks for the video! This finally made it click for me.

Perfect demonstration, it include awesome theory and practical .
I am fan of you video now !

Thanks Dave, you're a great teacher.

DONE thanks moved notes to onenote
6:25 digital certificate includes the public key only not the private key
8:30 how user/server gets a certificate from a certificate authority. The user generated their own public and private keys, they give that along with their identification to a certificate authority. This is called a certificate signing request CSR. The certificate authority then signs the certificate and gives it back to the user.
9:45 the certificate contains: public key only not private obviously, the CA identification and certificate owner/public key owner identification
10:30 how to make a CSR certificate signing request
.key file contains key
12:41 self signed certificate
A CA signing the certificate provides TRUST that the public key belongs to the person we think we are talking to. However, the certificate itself containing the public key that we use for encryption is what provides the encryption. Without a CA, we can still have encryption, but we can’t trust that when we connect to a server, the server/person responding is who they say they are (man in the middle attack). When the certificate is signed by a CA, we can be sure that they are who they say they are.
Example, we think we are talking to Alice, but bob intercepts the message and sends us his own public key and says I am Alice. We think we are talking to Alice, but we are actually talking to bob. Our messages are still encrypted though but now bob can read them. A CA tells us hey this public key actually does belong to Alice so you can go ahead and use it to encrypt your message.
15:30 so just using a self signed certificate allows you to encrypt messages, but you are vulnerable to a man in the middle attack. To mitigate this, you need a CA to check with it “hey does this public key belong to person x”. You can set up a self signed CA (called a self signed CA because you usually non-root CAs are signed by another root CA - chain of trust) and create a root-certificate. You need to install the root certificate in every machine in your organization (like the hardcoded root CAs in your OS or web browser)
17:40 TLS flow

Thanks a lot...i have been in IT field for a long time...many times i tried to understand keys, certificates etc... finally this video gave me a clear understanding ..thanks again.

well explained. thank you Dave.

Taking Security+ in 2 weeks. Every bit of extra info helps. Thank for clearly explaining ssl communication.

Excellent explanation of a complex topic. Beginning the video with a review of symmetric and asymmetric encryption was super helpful and really paid off at the end. Thank you for producing and sharing this video!

The best explanation I have heard. Very calm and clear. I got everything and I an not language native.

Great tutorial Dave! you made it simpler to understand

Mr Crabbe. OMG. I am working on my degree in Cyber Security. I am currently taking my Cryptography class. Unfortunately the study material is absolute garbage. I have had to resort to outside teaching material to learn. Thank you for this video. It has helped me a ton.

This is just awesome... The first diagram was worth millions

Thanks for the great explanation. This helped a lot to understand the topic!

This world needs more people like you

Dave - Thank you so much for sharing this. It is a great review even if you deal with it a lot. Good work

this video gives lot of information in very simple terms. thank you

Very good tutorial , covering symmetric , asymmetric keys , SSL , how certificate is generated and signed......

one of the best explanation i saw on the subject, specialy on the self certificat CA

Awesome video
Complex concepts explained in simple way
Appreciate your efforts

Very good explanation, thanks for the effort!

Good one. This tutorial has cleared my basic concepts about ssl

SO SO SO easy to understand, thank you !

this gives a very good understanding about the subject... kudos

This is truly informative thanks much sir!

Thanks a lot Dave the video was a bit slow but now I understand completely the key exchange!!!!

Very well explained. Thank you

best tutorial. thanks a lot Dave !!

Wow! I am really impressed. Thank you sir! Much love from germany

Excellent tutorial. Thank you.

i'm now your subscriber ! Great job Dave !!

Great explanation! Thank you.

Ive been in this industry for years, I tell you this is the most comcise, informative and to the point video about cert. Thank you

thanks a lot for a informative video. Very well explained!

Beautifully explained!

Nice explanation !!

I'm so glad I found this!!!!! Thank you!!! :-)

Very clear, thank you!

Thanks a lot, great tutorial.

Thanks a lot sir...very detailed lecture finally i understood this topic

best explanation ever! Thank you!

Thank you for this amazing clear explanation

This is crystal clear!

Great tutorial. It took me a while to shake off the confusion caused by hearing "ncss.ca" and assuming the .ca meant it was a CA.

Watch at 2x speed, very great breakdown!

ah yes, a Dave Crabbe video. it's almost a certificate in itself guaranteeing that I will understand this topic after watching this.

Excellent explanation.

Thank you very much for this video!

Thanks a lot, quick and clear.

wonderful explanation !!!

I hope you’re still around. That was explained very well

Excellently explained

Excellent explanation.. Best on Internet

Great video. Thanks!

Fantastic video thank you!

Nice explanation!

Wow great explanation!!

Awesome explanation

Thanks great explanation (y)

Thanks.. nicely explained.

Great Video! Life Saver.

Great explanation, very helpful thanks :-)