Timeline for Certificate Chain - intermediate and root certificate - installed required?
Current License: CC BY-SA 3.0
6 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Apr 6, 2016 at 11:35 | comment | added | Mike Ounsworth | Oh, yes, the browser will download the intermediates from your web server. "Installed into a client" means that they are placed into the trust store forever, but I see what you mean now. | |
| Apr 6, 2016 at 5:08 | comment | added | Noob | what I meant is, will a client/browser request intermediate certs for verification of the site's cert ? I asked this because I am putting the intermediate cert in my apache, but what's the point if the browser doesn't request them ? | |
| Apr 5, 2016 at 15:54 | comment | added | Mike Ounsworth | As mentioned in a comment to my answer here, some browsers actually do download and install intermediate certificates. This is called "certificate caching", but there are some security implications to it, and not all browsers do it, so I wouldn't rely on it. | |
| Apr 5, 2016 at 15:52 | comment | added | Mike Ounsworth | I'm not an expert on how browsers work, but yes, that sounds right. | |
| Apr 5, 2016 at 15:31 | comment | added | Noob | thanks for the reply - in short, can we say that server cert and intermediate certs are send over from the webserver to the browser, but they are never downloaded nor installed - right ? will the client/browser automatically request intermediate certs required ? | |
| Apr 4, 2016 at 15:46 | history | answered | Mike Ounsworth | CC BY-SA 3.0 |