By far the best description of the certificate process I haver seen.....a fricken gem of a description!

My best 18 mins spent on internet today. Thanks Sir..

The best style of progression in teaching encryption concepts. Wow!

One of the best videos on intro to crypto keys and certificates!

Finally a tutorial that explains the relationship between the public and private key. Thanks. So many videos take for granted that the public key is sent but in the end the private key magically decrypts 'somehow'. This makes it so much easier to understand.

Spending time this morning tuning up on cryptography concepts, and loving that I can get the refresher from the guy who taught me everything I know about this. You are so good at this stuff. Miss our interactions. Hope you are well, my friend.

The analogy with a safe that is being shipped around the world is great. Gave me a way better understanding of the topic!

This is probably the best video I have watched on keys! (I've watched many and never understood it)

Very informative and clear. This is of the quality of paid resources. Thank you for sharing!

After days of searching on this topic this is, by a country mile, the best explanation of encryption I have come across. Paul, as someone who has run many training courses myself, you articulate difficult concepts exceptionally well. Andy.

Great comforting voice and great explanation. Thank you

the most intuitive explanation for general idea. hat off to you, Paul.

That's the beauty, you explained so clearly. Thank you.

This tutorial is worth a million dollars. Thank you Paul!

The best explanation of Cryptography you will get via KZfaq, you can take that to the bank!

You have a gift for turning a complex concept into a simple explanation!

Great tutorial Paul, showing step by step how secure communications evolved on the internet.

Absolutely beautiful ! Hands down the best tutorial seen !

Thank you so much for this coherent explanation!! You're such a great teacher

great video. Very well explained for someone like me who doesn't have any cryptography background.

This is literally is the last piece of the jigsaw I was looking for and where it all comes together in understanding pki and certificates.Videos of such crystal clear explanatory quality about intricate technical stuff are few and far between.You took it to a whole different level, especially the last part where I experienced an epiphany when you combined the challenge of confidentiality with sender authentication.Thanks a lot Paul and keep up the good work!

Thank you for this, Paul. By far the best explanation of the topic

Nice Lecture. I just wanted to add that Certificate contains Digital signature which is just an Encrypted Hash that can be decrypted using the public key(verifying the sender), and the integrity can be verified with the Hash. For more information on who signs it, who checks it, watch further the video series on PKI, very well explained here. Thanks, Paul.

The best explanation about Certificates and Key exchange. Thank you for your contribution.

Excellent Video and great Effort Paul. As one of the comment already pointed out, I don't know even a paid training would be able to teach in such detailed manner. I appreciate your effort. Keep it up.

A good explanation on Encryption and key management, thanks paul for the efforts, it valued to my knowledge.

Very good explanation on the topic. Thank you for offering up this training for free.

Thanks a lot, it recapped everything and refreshed all my older memory...

Despite numerous encryption videos no KZfaq, I believe this is the clearest and succinct one to explain these concepts in such as short period of time...bravo~

Very detailed and easy to understand explanation - thank you for taking time and effort to make this!

Excellent video! Many thanks for all the work to create the extremely helpful graphics.

really awesome analogies, love the teachings

Future Visitors, If youre like me, watched dozens of videos but coudnt understand the Asymetric Crytography, THIS VIDEO IS FOR YOU. Thanks Paul Turner

Absolutely beautiful . By far the best explanation of the topic.

You are the best Paul Turner, well explained.

Thanks Paul for this great video. You have a gift of explaining complicated concept with ease

Learning PKI with this playlist in 2024 😁😁😁😁 Thank you Paul

Indeed. Best 18 min of my day as well. Well done. Great images and description.

Very clear and helpful. It's difficult to get a good grasp of these concepts if you're going into IT type of stuff but haven't studied something of that sort.

Wow - am not a security guy - and I feel like an expert now ;) So lucid and easy to understand - was struggling to understand these key management concepts earlier - Great Video Paul - keep up the great work.Thanks a ton!!

All your videos are excellent and well thought out. Thank you!

explanation clear as glass.Thank you very much

Excellent explanation with a nice illustrative diagrams and walk through.

Amazing, thanks a lot, please add another video for practice and testing for all scenarios...

Best explanation. Very useful in understanding Keys and Certificates, Thanks

Really Appreciate the simple way in which you explained the complex concept..

great explanation!!! easy, crisp and concise...way to go!!!

Very educative video. Thanks

I can not think of any way explaining this better. Thank you

Very clear! Soooo useful

Thank you very much. Explanation is very clear... It is the best...

Super session Paul👍🏼

Best video explaining concepts of Public-key and private Key and certificate. Awesome explanation sir !!!

studying for my comptia security + and this has been very useful

Amazing explanation !!

Awesome video, Thank you!

amazing explanation, much appreciated

So good. You are a gifted communicator

i love your wonderful and very patient approach you took to explain it, it is hard to simplify it because simplification and analogies can induce deeper questions on the actual logic of how the whole thing really fits together and how it actually operates, but you made a serious conceited effort nonetheless. Was anyone else here left with the question of "Why" the man in the middle is NOT able to resurface on the picture after the introduction of certificates ? I mean, the man in the middle simply has to wrap his public key with a {fake} certificate and he can certainly continue to perpetuate his illicit acts of mediating between the two parties ?? LOL, i know the answer but I just wonder if ANYONE else here had that question lurking in the back of their minds when suddenly the solution to eliminate the middleman was simply the introduction of a certificate whereby the public key is simply "wrapped" inside a certificate and "walla" . . the middleman is defeated just like that ?? did it strike ANYBODY else here as "No way, the middleman WILL certainly persist becuz he will simply fabricate a certificate and wrap his malicious public key inside that fabricated certificate so he will therefore PERSIST with or without the introduction of certificates" ?? Hahahahaha, LOL

Nice explanation. Thanks.

Really Helpful Thanks and Good work Paul !

You deserve 100k likes for this article!!

Very good video to understand why the certificates are used ?

Awesome video Sir, Please post more. for beginners like us, its a great source of info.

Wow, that a clear and concise lecture. Thank you Paul!

Wow! Very amazing and easy to understand video, thanks a lot.

Amazing explanation. Thank you so much.

Holy shit this blew my mind, that was very clear and useful!

Clear and concise. THANKS!!

Very Very well done and explained. Thank you sir !

The best explanation I came across

Many Thanks, Paul! That's very helpful.

Great job Paul, you've done an simple guide for a very complicated issue. But I have a question please, how 2 parties can exchange private keys ?

This explanation is superb.

very clear and clean video; just one question, at 15:12, how can the receiver decrypt the message with the received public key? from my understanding, public key is for encrypting only (not decrypting), while private key is for decrypting (and for encrypting too, if needed), am I wrong?

Amazing video, thanks!

👍👍- Awesome! Thanks!

This was very helpful in understand CAs ! Thank you so much!

Thanks for the video. Very informative, I had a little bit of an idea but it’s good to get a good overview before implementing :)

The presentation doesn't state clearly that the subject's public key is the primary piece of information that the certificate provides and that all the other fields are provided to ensure the validity of this key: with a certificate, the public key is part of that certificate. Alice can now use this public key to decrypt the certificate signature, validate it and encrypt her own message to be sent to Bob.

Great job!!!

@11:33 How the man in the middle can decrypt the message with his private key? Isn't it possible only with the private key of the intended recepient?

good video overall. everything was making total sense up until that very last scenario. that was kind of confusing. would you mind clearing it up. the way I understood it is the sender uses their private key to encrypt the message. then the sender uses the recipient's public key to encrypt the message? did I get that right? then that means the recipient would need decrypt the message twice??? 1st with their private key and then with the senders public key? does that sound right or did i misunderstand something? thanks

Thank you so much for sharing, It was really clear!

great explanation! thank you

this video is gem !

Awesome explanation

As clear as crystal.

Easily the best explaination of symmetric/asymmetric encryption and an overview what certificates are for, on youtube.

This was great Paul. It would have been good if you had added "sender"/"receiver" in the diagrams

thanks so much!

Thanks for the explanation! Isn't it possible for the man in the middle to forge the certificate somehow?

Great video! Question: since the public and private key are just numbers related to each other based on an algorithm, can't an attacker generate the private key using the public key and use it to decrypt the message?

I was wondering about the significance of certificates, you nailed it. Great video and I enjoyed watching it. Wondering what if the man in the middle spoofs the certificate that its been issued by the legit party. which body issues the certificate?

Hi Paul, great video, thanks. Just wondering, how can one get into a field like this? What education background do you need? It looks super interesting.

Thanks for this. But there's a little confusion at the end, where at one point, you have mentioned that encryption is done by sender's private key before sending to receipient. Not sure if I got it wrong.

omg... awesome!!

Small pedantic point, but 2^128 doesn't "equate" to the number given. This is easy to see since the number given is divisible by 10 and hence by 5, but 2^128 is not. Of course, being off by a few million doesn't matter in this context!

Fantastic!

Paul Turner : Very nice video. [Doubt] : Most browser has pre-installed CA public keys which are used to decrypt the CA certificate and get the public key of source. Now a hacker can steal the public key of server and then in the SSL handshake he can use server's public key to send a symmetric key. This is an identity theft. How is this being prevented in certificate model.