> > if somebody intercepts the certificate while it is in transit on the > > network, this person can use this certificate ? > > If you have a certificate you can verify something that's been signed > with the private key, or you can encrypt something so that only the > holder of the private key can decrypt it. > > You can't "do anything bad" with a certificate. In particular, you > cannot sign anything with it.
In fact I use certificate to establish a VPN, the handcheck is based only on the certificate. Thus if somebody intercepts a certificate it can use the VPN ? (because the VPN server accepts all connection if it knows CA which signed the certificate of the user) thx for your answers david Protek-on: CaraMail met en oeuvre un nouveau Concept de Sécurité Globale - www.caramail.com
