This chapter provides an overview of Secure Delivery on OpenVMS
and describes how to invoke its components using CDSA. Secure Delivery
creates digital signatures for files, so that the file and associated manifest
can be delivered over an unsecured channel such as a web download.
Support for Secure Delivery is included in CDSA beginning
with OpenVMS Version 8.3.
Secure Delivery uses public key and digital signature technology
to implement a system that provides OpenVMS users with the ability
to authenticate and validate the files they download from OpenVMS
and third-party OpenVMS vendors.
Secure Delivery enhances CDSA by creating a manifest of
a target file so that the file and its accompanying manifest can
be delivered together over an unsecured Internet link or media format,
such as a CD or DVD. After the files are in place on the target
system, the manifest can be used to authenticate the originator
and validate the contents of the target file. If the target file
(or the manifest) has been tampered with in any way, the validation
process will fail. If the certificates used to sign the file have
been revoked, the validation will fail.
See the Glossary for definitions of terms used in this chapter.