OpenVPN Certificates - ???

Discussion in 'privacy technology' started by muckypup, Aug 10, 2013.

Thread Status:
Not open for further replies.
  1. muckypup

    muckypup Registered Member

    Joined:
    Jun 12, 2010
    Posts:
    5
    I changed my VPN today from a PPTP connection to OpenVPN.

    My VPN settings using Ubuntu 12.04 show:

    Authentication:
    CA Certificate (Ipredator.se.ca.crt).

    The Advanced / TLS Authentication tab shows:

    Use additional TLS authentication:
    Key File (Ipredator.se.ta.key).

    Can someone please explain, in simple terms, what the CA Certifcate and additional TLS authentication Key File mean and how they enhance my privacy and / or security.

    Thanks!
     
  2. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    6,029
    The ca.crt certificate, which was generated by (or for) the server, allows your client to send secure messages to the server.

    Using a shared ta.key improves SSL/TLS security. That is:

    http://openvpn.net/index.php/open-source/documentation/security-overview.html

    Many VPN services also use client.crt and client.key, which protect the server from attackers by authenticating clients.
     
Thread Status:
Not open for further replies.