I'm having a friendly debate with a co-worker as to the meaning of "self-signed" when it comes to PKI. We have an internal root and subordinate CA in our organization. We import the cert chain on internal clients to allow for the trust of certificates issued from our internal/private CA.
My colleague believes that the definition of a self-signed certificate is one where there's no publicly trusted/commercial certificate authority involved. I, however, understand a self-signed certificate to be one that's created by the host that it resides on and has no further link to any chain, private or public.
I've searched Google and found both answers being touted as correct. I'm not great at comprehending RFC's, which is probably what I need to do to really get to the root of this argument. Rather, can someone more knowledgeable than myself help to settle this disagreement?