Verify PKI Certificate using certificate fingerprint


PKI certificate creates by SIPsocial is self-signed, which means it doesn't go through the standard PKI process of certification with a Certificate Authority (CA).  By PKI standards,  a certificate is considered not valid until it is signed by a trusted CA.

Instead of depending on a third party CA, SIPsocial site owners, who must have known each other, can validate their certificates by comparing the fingerprint (an example of a PKI fingerprint is shown below) of the sent certificate against the received one to be sure that they are the same.



An example of a PKI certificate fingerprint for validation.