nEnrollment is the process
of obtaining a certificate from a CA.
1.Alice generates a key pair, creates a message containing a copy
of the public key and her identifying information, and signs the message with the
private key.
nSigning the message provided
“proof-of-possession” (POP) of the private key as well as message
integrity
2.CA verifies Alice’s signature on the message