Most of us know, that secure transport over http(s) is achieved with the help of SSL certificate verification. To be safer from MITM (Man-in-the-middle) attack, the TLS handshake happens between the…

SystemWeakness's platform is  dedicated to cybersecurity education and awareness, offering insights into common security vulnerabilities, attack techniques, and risk mitigation strategies. Through articles, tutorials, and security advisories, SystemWeakness offers insights into securing software applications, networks, and systems from cyber threats. Readers can learn about secure coding practices, penetration testing methodologies, and incident response procedures to strengthen their cybersecurity posture and protect against cyber attacks.

System Weakness

This post explains how SSL certificate verification works and the role of Certificate Authorities in establishing trust. It explores the concept of certificate chains and how they are validated. The post also discusses the use of AIA (Authority Information Access) in SSL certificate verification for browsers and why language libraries like Python or Node.js do not handle AIA. Finally, it provides a solution for fixing certificate chain misconfigurations in a server.

SSL certificate chain and how its verification works in the browser (when misconfigured in the server) but not with language libraries (Python or Node)?

When the server SSL chain is misconfigured