Highest Voted 'scep' Questions - IT Security Stack Exchange

13

votes

3 answers

Why one should prefer EST protocol instead of SCEP?

For many years SCEP was a simple and widely used protocol for obtaining X.509 certificates. However, not too so long ago another protocol called EST (RFC 7030) was developed. What are the main reasons to move out from SCEP in favor of EST?

public-key-infrastructure x.509 scep

asked Jul 06 '16 at 14:49

tysonite

429
2
5
14

2

votes

1 answer

Can CMP (Certificate Management Protocol) be used to issue certificates to mobile devices?

The SCEP (Simple Certificate Enrollment Protocol) is the more like the defacto protocol for device enrollment. It pushes the digital certificates to the device which can be used for authentication, and other cryptographic purposes. Can CMP be used…

public-key-infrastructure mobile key-management protocols scep

asked Dec 14 '16 at 20:43

always_a_rookie

99
9

2

votes

2 answers

Can CA certificate be spoofed on the browser level?

Can a certificate be spoofed at the browser level? Meaning I go click the LOCK image in my url bar and it shows a valid certificate from VeriSign but somehow the attacker spoofed that information. I'm not sure how they could do it and that's what…

web-browser certificate-authority non-repudiation scep

asked Dec 06 '16 at 18:21

IEnjoyEatingVegetables

150
7

1

vote

0 answers

Where should the SCEP requests be decrypted?

Let's say you provide a SCEP service available to the outside world, where should the SCEP requests be decrypted? At the load balancer, in the backend server, elsewhere? It doesn't look like there is much processing/filtering that can be done by the…

decryption waf scep

asked Jul 01 '16 at 01:42

butters

11
1

Questions tagged [scep]

Why one should prefer EST protocol instead of SCEP?

Can CMP (Certificate Management Protocol) be used to issue certificates to mobile devices?

Can CA certificate be spoofed on the browser level?

Where should the SCEP requests be decrypted?