eg: UK or Brides UK or Classical Art or Buy Music or Spirituality
 
eg: UK or Brides UK or Classical Art or Buy Music or Spirituality
 

Your Online Guide » IT Hardwares » Computer Hardware Guide
[S848]Ssl Certificates How To
by Deepak Khanna, Dee

There is hardly any doubt that the Internet has successfully created new opportunities for e-commerce. However, that expansion has also attracted cyber criminals. This industry is always on the threshold of new threats from hackers. This is where a fraudulent web site impersonating a legitimate business attempts to woo unsuspecting visitors into divulging personal information. Until now we don’t have a solution of this problem, but now we have a wonderful solution in shape of a Secure Sockets Layer.

Secure Sockets Layer which is also known as “SSL certificates” is the standard security technology for establishing an encrypted link between a web server and a browser. This digital certificate is used with the most popular security protocol on the Internet. Without this encryption, packets of data travel networks in full view. Anyone can see the data and manipulate it to imitate other users.

Today maximum e – commerce sites are using this digital certificates to keep secure their customers valuable information. That’s why when we make a purchase on the Web and notice the closed lock icon at the bottom of our browser or the HTTPS:// prefix in the URL, it means now all data passed between the web server and browsers remain private and integral.

Today gaining the trust of online customers is vital for the success of any e-commerce based business. Now any web server company can enable “SSL Certificates” in their web server and secure their data by using four simple steps.
These steps are:
1) Obtain SSL Certificate(s),
2) Produce a Certificate Signing Request,
3) Register for a SSL server certificate,
4) Establish the SSL server certificates.

Some time many companies find problem to manage their multiple sub domains security. For them there is another certificate is present which manage secure multiple websites with a single certificate. We call this wildcard certificate. This certificate is a cost effective and well-organized way of securing multiple sub domains without the need to manage multiple certificates. You may get ssl certificates, digital certificates, and verisign certificates from places like , and other sites on the net.


When VeriSign issues an SSL Certificate it acts as a Certification Authority (CA). It digitally signs each certificates. Each browser contains a list of Certification Authorities to be trusted. When the SSL handshake occurs, the browser verifies that the server certificate was issued by a trusted CA.


With people having the ability to read the information of other folk, the Internet is not as safe as it once was. Hackers are people who are able to uncover the information that people pass on websites. It is also possible for them to get hold of confidential data like credit card details or passwords. Many hackers also have the ability to offer their own version of another person's website and this can be hosted on their own server. This is done to fool customers who may be unaware of these issues. The majority of hackers act to obtain information that is of value and interest about people. One way of combating these hackers is by using the Secure Sockets Layer or SSL.

Since 1994 when it was developed by Netscape, the SSL has developed into a security technology that is now recognized as an standard across the world. It works in a way to ensure that a secure link between a server and a browser. All OF this adds up to making sure that any information that is passed between parties remains secure. The security can be seen the padlock emblem that appears on screen. Many e-Business companies appreciate this opportunity to safeguard the information of their customers as well as ensuring the confidentiality of any transactions that take place

SSL Certificate:

If a web server wants to use the Secure Sockets Layer protocol, it will require an SSL Certificates provided by the Certification Authorities (CA). You will have to complete several questions about the identity of your company and website, while you choose to trigger SSL on your web server. The web server then constructs two cryptographic keys i.e. a Public Key and a Private Key. The Public Key is not a furtive. It is placed in a Certificate Signing Request or CSR, which is a data file that contains your details. You then require to submit the CSR. The Certification Authority validates all the details that you have provided in the CSR throughout the SSL Certificate application process. It further allocates an SSL Certificate that contains all your details and thus allows you to use SSL. The issued SSL Certificate is matched to the Private Key by your web server. This will enable your web server to establish an encrypted link between your website and the customer's web browser.

However, all these complex procedures of the SSL protocol remain undetectable to the customers. What their browser provides to them is a key indicator that helps to let them know they are well protected by an SSL encrypted session. There is a lock icon in the lower right hand corner of your customer's browser by clicking which, your SSL Certificate and all other details are displayed. Generally, all these SSL Certificates are allotted to registered companies and to legally accountable individuals.

The usual information contained within an SSL Certificate will usually provide country, state, city, and address, name of the company and the domain name of the site. The expiration date of the certificate will also be included as will further information about the Certification Authority that holds the responsibility for issuing the certificates. If the browser of the visitor connects to the secured site, the SSL certificate will be unable to retrieve the SSL certificate from the site. A quick search in the veracity of the sites SSL certificate will be undertaken and that it has been allocated to the website claiming it is for. Another check will also be undertaken on the date of expiry for the certificate. If for any reason the certificate does not pass all the questions asked of it, there will be a warning displayed to the final user.

There is no doubt that the golden padlock has been accepted by many customers. It is viewed as a symbol of trust for the site. There is little doubt that the e-Business company can use this as an ideal opportunity to encourage trust and additional expenditure from customers and also turn visitors into customers. There are numerous shopping carts or sites that take information from customers and a large percentage utilize the SLL certificates. Nevertheless, users should recall that if confidential information is sent by email, this information is not naturally secured.

Brand new functions:

Many users may be aware of the SSL v2 version but the SSL v3 is a much improved version. The SHA-1 based cipher has been added and this offers assistance with regards to authenticating certificates. SSL v2 had some flaws like when cryptographic keys were utilized for both the authenticating messages and encryption. In addition to this, SSL v2 did not provide any level of protection for the handshake, leaving it open to "man in the middle downgrade attacks" occurring without anyone noticing.

Another interesting progression has been TLS (Transport Layer Security) superseding SSL. There is no doubt that TLS has been heavily influenced by SSL and is viewed as a key player in Microsoft and Netscape browsers in addition to a whole host web serving products. Today, the SLL utilizes public as well as private keys to provide an encryption service from the RSA that allows users to have a digital certificate.

Do you have a need for an SSL Certificate? People who appreciate privacy and ask for it from others need to buy SSL:

Companies who provide an online shopping provision and allow customers to use credit cards are advised to have an SSL certificate to ensure an extra layer of protection for customers.

There is a need for offices that have intranet usage where information is being distributed to obtain an SSL certificate.

If you have a need to process information such as telephone numbers, ID numbers, license numbers, date of births or addresses then an SSL certificate can aid this process.

* An SSL Certificate helps you to process several sensitive data including date of birth, ID numbers, address, telephone number or license number safely.

There is also a need to use SSL certificates to fully pass security and privacy requirements.

Some helpful information about purchasing SSL Certificates:

Although the Certificate Authority is an extremely wide one, there is a need to consider your requirements and budget before choosing who to buy from. There are a lot of SSL certificate firms that are able to meet many price ranges. There are 22 separate their parties who can be found from checking the Open Directory Project and there are also well over 20 root certificates that can be found in Internet Explorer and Firefox. The market however is dominated by a few firms and this is mainly down to pricing issues.

There was a survey undertaken by Netcraft in 2005 which set out to find the largest vendor that offers SSL certificates. This was followed in January 2007 when Security Space set out to undertake a similar project. This latter survey listed a few firms as being highly rated. These sites include Equifax represented by its GeoTrust subsidiary (www.equifax.com), VeriSign which was represented by the Thawte subsidiary (www.verisign.com), in addition to GoDaddy/Starfield (www.godaddy.com), Digicert (www.digicert.com) as well as Comodo (www.comodo.com).

In fact, depending on the measurement methodology, these six vendors as a whole have occupied approximately 95% of the total market. The Verisign holds the largest market share of around 72%, followed by Comodo which holds around 18% share, Geotrust with 3.43% of the total market share. Entrust and GoDaddy obtained approximately 2.5 % and 1% respectively. The other vendors hold 3 to 4% on an average.
Article Source : Pg. 186

About Author
Both Deepak Khanna & Matt Hedges are contributors for EditorialToday. The above articles have been edited for relevancy and timeliness. All write-ups, reviews, tips and guides published by EditorialToday.com and its partners or affiliates are for informational purposes only. They should not be used for any legal or any other type of advice. We do not endorse any author, contributor, writer or article posted by our team.

Deepak Khanna has sinced written about articles on various topics from Government Grants, Blood Pressure and Vacation. ssl certificates http://www.ssl.com. Deepak Khanna's top article generates over 8100 views. to your Favourites.

Matt Hedges has sinced written about articles on various topics from About Web Hosting, About Web Hosting and The Internet. Republished with permission from WebHostingMadness.com, a publisher of , articles and helpful guides on. Matt Hedges's top article generates over 40500 views. to your Favourites.
EditorialToday IT Hardwares has 2 sub sections. Such as Computer Guide and Hardware. With over 20,000 authors and writers, we are a well known online resource and editorial services site in United Kingdom, Canada & America . Here, we cover all the major topics from self help guide to A Guide to Business, Guide to Finance, Ideas for Marketing, Legal Guide, Lettre De Motivation, Guide to Insurance, Guide to Health, Guide to Medical, Military Service, Guide to Women, Pet Guide, Politics and Policy , Guide to Technology, The Travel Guide, Information on Cars, Entertainment Guide, Family Guide to, Hobbies and Interests, Quality Home Improvement, Arts & Humanities and many more.
About Editorial Today | Contact Us | Terms of Use | Submit an Article | Our Authors