1

I'm using online banking on Firefox that requires me to import my personal certificate into the browser I use.

Bank access is via their webpage, using pass and personal certificates. My question is, where does Firefox store my personal certifications and how safe are they? Is it done via passwords and keys applications?

Also what are my options to store the certificate on a USB stick and use it with Firefox when accessing bank? How do I achieve this if the bank page requires the personal certificate to be imported into a browser to access their page?

Mateo
  • 8,152
jfouclait
  • 21

2 Answers2

1

Where does mozilla store my personal certifications and how safe are they?

Those are stored in a sqlite database in files names cert8.db and key3.db inside your home folder in a hidden directory .mozilla/firefox/*.default/. And it is very safe.

Is it done via passwords and keys applications?

It uses public and private key pairs. You can read more about public-key cryptography standards here. Mozilla uses PKCS #11 (also known as "Cryptoki". An API defining a generic interface to cryptographic tokens (see also Hardware Security Module). Often used in single sign-on, Public-key cryptography and disk encryption[10] systems).

I do not believe these 2 are possible(?) No proof but I can not seem to find any method for this.

Also what are my options to store the certificate on a USB stick and use it with mozilla when accessing bank?

How do I achieve this if the bank page requires the personal certificate to be imported into a browser to access their page?

Community
  • 1
Rinzwind
  • 309,379
0

As Rinzwind said, the certificates are stored in the .mozilla directory in your home folder. I would not consider this "very secure" though, anyone who copies this folder automatically gets access to your certificate as they are not password-protected.

I suggest you to create a new Firefox profile as described in this answer. This allows you to separate your main browsing profile (cookies, add-ons, history, ...) from your banking profile (which could then be kept on an encrypted external disk.

Community
  • 1
Lekensteyn
  • 178,446