Creating secure environments in unsecured environments, like the internet, can be accomplished by using public key infrastructure, or PKI. Public key infrastructure makes it safe and secure to exchange data and conduct transactions over the internet, such as purchasing airline tickets. In this type of transaction, the airline will issue you a digital certificate with their public key. When you go to purchase the airline tickets, your personal information and payment is encrypted and sent over the internet to the airline. Once received by the airline, they use their private key to decrypt you purchase, confirm it, and encrypt the receipt which is sent back to you, to complete the transaction.
A CA Creates Digital Certificates with Your PKI Data
PKI data is contained in digital certificates which are created by a certificate authority. The CA will create two digital certificates at the same time. One certificate will contain the private key, while the other will contain the public key. It is important to note that these keys must match otherwise the certificates will not be compatible. The certificate with the private key is given to one person or organization. The certificate with the public key is given to as many people or organizations, which require it.