Certificate management is handled by a service available to client applications that need to validate certificates and private keys for operations such as VPN access, Wi-Fi access, and SSL webpage access.
The certificate manager service (certmgr_pps) provides a centralized service that offers certificate and private key-related operations to services and applications, such as S/MIME, VPN, Wi-Fi and the web browser. In this QNX CAR release, certificate management is used only by the web browser for authenticating SSL website certificates.
Certificates are stored at /var/certmgr. This directory includes subdirectories for the various services and applications that require certification management. Each sub-directory contains user_trusted directory sub-directories with the trusted certificates. For example: /var/certmgr/web/user_trusted/.
The certification manager uses the following PPS object: /pps/services/certmgr/control. With the current release, this object is used only for QNX CAR internal communications; third-party applications don't need to publish or subscribe to it.
The images below show how the browser displays information about certificates to the user.