Frequently Asked Questions

  1. Why do I need a Secure Email Certificate?
  2. Why do I need a MyIdentity Certificate?
  3. What is a PKCS #12 file?
  4. Why do I need to enter a password?
  5. Is SecureTrust generating or storing my private key?

1. Why do I need a Secure Email Certificate?

If you answer yes to any of the following questions, then you need to purchase a Secure Email Certificate:

  • Do you need to encrypt your emails so they cannot be read by unauthorized parties?
  • Do you need to digitally sign your emails so they cannot be altered by unauthorized parties?

A Secure Email Certificate from SecureTrust will encrypt, decrypt, and sign email sent or received from your email address.

2. Why do I need a MyIdentity Certificate?

If you answer yes to any of the following questions, then you need to purchase a MyIdentity Certificate:

  • Do you need to authenticate VPN clients?
  • Do you need to configure mutual TLS authentication using a publicly trusted root certificate?

A MyIdentity Certificate from SecureTrust will provide client identity information for a variety of use cases.

3. What is a PKCS #12 file?

A PKCS #12 file is a type of file (similar to a .zip file) that bundles a private key and set of certificates together. The private key is protected by a password, so you must enter the password for the PKCS #12 file in order to open it.

PKCS #12 files are supported by the most popular operating systems and mobile devices. Additionally, several cloud-based email providers, such as G Suite, support the use of Secure Email Certificates stored in PKCS #12 format.

4. Why do I need to enter a password?

PKCS #12 files contain your Certificate and private key. In order to protect the private key stored in the file, the PKCS #12 file is encrypted using a password. Only someone who has this password can open the file and use the private key. Therefore, it is important to note that:

  • You should not share the password or use the same password as another account.
  • If you lose the password, then you will no longer be able to open the file.

5. Is SecureTrust generating or storing my private key?

No, SecureTrust does not generate the private key for your Certificate, nor do we store the key on our servers. Instead, the key is generated in your browser using JavaScript and the PKCS #12 file that you download is created in your browser and is never sent to a server.