------
            Introduction
            ------
            Landais Gabriel
            
Definitions

 Public key encryption allows two entities to exchange data in a secure way. Each one exposes its own public key, linked to a secret private key.

 The public keys are used to encrypt the data, and the private key allows to decrypt it.

[./images/public_key_signing.png] Public-key cryptography

 A public key certificate (also known as a digital certificate or identity certificate) is an electronic document which uses a digital signature to bind a public key with an identity. The certificate can be used to verify that a public key belongs to an individual.

 In a typical public key infrastructure (PKI) scheme, the signature will be of a certificate authority (CA). The signatures on a certificate are attestations by the certificate signer that the identity information and the public key belong together.

 Certificate types restrict the authorized usages of a certificate. One identity may have many certificates. The certificate authority type allows to sign certificates.

Goals

 Firstly dedicated to ATNA tests, TLS tools aims to provide several useful things needed for a connecthaton :

	* a PKI (Public Key Infrastructure), delivering certificates with various profiles

	* certificate validation, to check that it matches specifications

	* test suite, using certificates generated for test purposes and creating client/servers with connection validation

	* remote certificate validation using a web service