Skip to main content
Home/Glossary/Certificate Authority (CA)

Certificate Authority (CA)

A trusted entity that issues, validates, and revokes digital certificates used for secure communications.

Security InfrastructureAlso called: "ca", "certification authority"

Certificate Authorities are the trust anchors of public key infrastructure.

CA responsibilities

  • Validation: Verify identity before issuing certificates.
  • Issuance: Generate and sign digital certificates.
  • Revocation: Maintain Certificate Revocation Lists (CRLs).
  • OCSP: Provide online certificate status checking.

CA hierarchy

  • Root CA: Self-signed, highest trust level.
  • Intermediate CA: Signed by root, issues end-entity certs.
  • End-entity certificate: Issued to servers/users.
  • Certificate chain: Links end-entity to trusted root.

Types of CAs

  • Public CAs: DigiCert, Let's Encrypt, Sectigo.
  • Private CAs: Internal enterprise CAs.
  • Self-signed: No external validation (development only).

CA validation levels

  • DV (Domain Validation): Basic domain ownership.
  • OV (Organization Validation): Verified organization.
  • EV (Extended Validation): Highest scrutiny, green bar.

Certificate Transparency

  • Public logs of all CA-issued certificates.
  • Detects mis-issuance and compromised CAs.
  • Required by browsers for EV certificates.

Related Tools

Related Articles

View all articles
📄

Grok vs Regex: What's the Difference and When to Use Each

Grok vs regex isn't a fight. Grok IS regex with a reusable naming layer for log parsing. Here is when to reach for each and how to convert between them.

Read article →
📄

How to Fix _grokparsefailure: Debugging Grok Patterns Step by Step

_grokparsefailure tells you a grok pattern failed but not why. Here are the 7 most common causes and a step-by-step method to pinpoint and fix each one.

Read article →
📄

Grok Pattern Examples for Common Log Formats (Nginx, Apache, Syslog, and More)

Copy-paste grok patterns for Nginx, Apache, syslog, Java, AWS ELB, HAProxy, Postgres, IIS, Docker and more — every one tested against a real sample log.

Read article →
📄

Train a Neural Network in Your Browser (No Code Required)

Learn how neural networks actually work by training one yourself — right in your browser. No Python, no installs, no math degree. Watch backpropagation and gradient descent happen live, then quiz your trained model.

Read article →

Explore More Security Infrastructure

View all terms

Firewall

A security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules.

Read more →

VPN (Virtual Private Network)

An encrypted network connection that creates a secure tunnel between a device and a remote network over the internet.

Read more →
Back to glossary