2 ca signed certificates, Video authentication manual – Quadrox Video Authentication User Manual

Video Authentication Manual

6

Version 4.4 Series

2.2

CA signed certificates

In spite of the self-signed certificates advantages, this approach is not the most secure. To
improve your security, Quadrox recommends getting a certificate from a trusted certification
authority (CA). There are Certification Authorities (CA) which are explicitly trusted
worldwide so Microsoft pre-installed theirs certificates in the Windows Operating System.
Hence those certificate authorities are trusted by all 3

rd

parties which use a Windows

Operating System. If you get a certificate signed by the CA, you automatically become a
trusted signer in the Windows environment.

To import the CA certificate in the WebCCTV system, follow the steps below:

1.

Save the certificate on your WebCCTV server.

2.

Specify the exact path to the certificate in the File on server field.

3.

Click Import button.

Exported movie files will now be signed by the imported CA certificate. The main advantage
is that you don’t need to install it on each machine since this certificate is pre-installed there.

A certificate loses its “trust value” over time, because the longer it is in place, the higher
chance it has of being compromised. It is recommended that certificates are renewed regularly
and that the old certificate is allowed to expire.

CA certificates have the following advantages and disadvantages:

Advantages:

Certificate is checked by trusted 3

rd

party for maximal security

Certificate doesn’t need to be explicitly added to trusted certificates
list

Certificate expires

Disadvantages:

Certificate must be purchased