继续使用缺少值的证书可能会给您的客户端的敏感数据带来风险。缺少必需字段和值的证书可能导致浏览器显示警告。在连接网站时出现警告会引起不信任,并且导致客户端避开您的网站。在证书中缺少字段和值还可能会妨碍专为查找这些字段而进行编程的应用程序正常运行。
自签名证书以及未经过 CA 签名的证书可能不含有所有必需信息。此外还有可能未充分加密。
行业标准明确规定了证书颁发机构 (CA) 在公众信任的 TLS 证书中针对这些要保护的证书而必须包括的字段和值。这些字段和值有助于 CA 解决网络安全当前及未来面临的任何威胁。
DigiCert is the world's leading provider of scalable TLS/SSL, IoT and PKI solutions for identity and encryption. The most innovative companies, including 89% of the Fortune 500 and 97 of the 100 top global banks, choose DigiCert for its expertise in identity and encryption for web servers and Internet of Things devices. DigiCert supports TLS and other digital certificates for PKI deployments at any scale through its certificate lifecycle management solution, CertCentral®. The company is recognized for its enterprise-grade certificate management platform, fast and knowledgeable customer support, and market-leading security solutions. For the latest DigiCert news and updates, visit digicert.com or follow @digicert.
©2020 DigiCert, Inc. All rights reserved. DigiCert, its logo and CertCentral are registered trademarks of DigiCert, Inc. Norton and the Checkmark Logo are trademarks of NortonLifeLock Inc. used under license. Other names may be trademarks of their respective owners.