NOTE : Technically they do use different language codes in the URLs based on the client local but to the best of my knowledge they all map to the same files today. There is a pre-configured location where Windows looks for this Certificate Trust List (CTL), it is. If it finds the certificate it needs in that list it downloads it and installs it. This list contains attributes about those certificates (hashes of their subject name and keys, what Microsoft believes it should be trusted for, etc.). Windows has a feature called Automatic Root Update, when CryptoAPI does a chain build, exhausts the locally installed root certificates it downloads (if it has not already done so) a list of certificates it should trust.
0 Comments
Leave a Reply. |