Certificate Issues |
Category ID: 295 (Category) | Status: Incomplete |
Description Summary
Certificates should be carefully managed and checked to assure that data are encrypted with the intended owner's public key.
A certificate is a token that associates an identity (principle) to a cryptographic key. Certificates can be used to check if a public key belongs to the assumed owner. |
Nature | Type | ID | Name | View(s) this relationship pertains to![]() |
---|---|---|---|---|
ChildOf | ![]() | 254 | Security Features | Development Concepts (primary)699 |
ChildOf | ![]() | 731 | OWASP Top Ten 2004 Category A10 - Insecure Configuration Management | Weaknesses in OWASP Top Ten (2004) (primary)711 |
ParentOf | ![]() | 296 | Improper Following of Chain of Trust for Certificate Validation | Development Concepts (primary)699 |
ParentOf | ![]() | 297 | Improper Validation of Host-specific Certificate Data | Development Concepts (primary)699 |
ParentOf | ![]() | 298 | Improper Validation of Certificate Expiration | Development Concepts (primary)699 |
ParentOf | ![]() | 299 | Improper Check for Certificate Revocation | Development Concepts (primary)699 |
Mapped Taxonomy Name | Node ID | Fit | Mapped Node Name |
---|---|---|---|
OWASP Top Ten 2004 | A10 | CWE More Specific | Insecure Configuration Management |