%brandDTD; ]> Privacy & Security Preferences - Certificates

Certificate Settings

This section describes how to set your certificate preferences and how to use the Certificate Manager, Device Manager, and other dialogue boxes related to certificates.

For step-by-step descriptions of various tasks related to certificates, see Using Certificates.

In this section:

Privacy & Security Preferences - Certificates

This section describes use the Certificates preferences panel. To view Certificates preferences, follow these steps:

  1. Open the &brandShortName; Edit menu and choose Preferences.
  2. Under the Privacy & Security category, click Certificates. (If no subcategories are visible, double-click Privacy & Security to expand the list.)

Client Certificate Selection

Some web sites require you to identify yourself with a certificate. The option you select here determines how the browser identifies the certificate to present among those you may have on file:

Manage Certificates

Certificates are the digital equivalent of ID cards—they help other people identify you, and they help you identify other people, web sites, and organisations.

To examine or configure the certificates you have on file, click Manage Certificates. See Managing Certificates for further information on this dialogue.

Manage Security Devices

A security device is a hardware or software device that stores your certificates and keys. For example, a smart card is a security device. Your browser has its own built-in software security device, and you can use additional security devices, such as smart cards, at the same time.

To examine or configure your security devices, click Manage Security Devices. See Managing Smart Cards and Other Security Devices for further information on this dialogue.

OCSP

A certificate revocation list (CRL) is a list of revoked certificates that is generated and signed by a certificate authority (CA). The Online Certificate Status Protocol (OCSP) makes it possible for Certificate Manager to perform an online check of a certificate's validity each time the certificate is viewed or used. This process involves checking the certificate against a CRL maintained at a server specified by the CA of that certificate. Your computer must be online for OCSP to work.

The following settings in the OCSP section of the Certificates preferences panel determine how Certificate Manager uses OCSP:

For more detailed information on certificate validation, see How Certificate Validation Works.