Your Guide to SSL Certificates

SSL is short for Secure Sockets Layer, which is a security system employed by web browsers and servers. The SSL protects data during transfer within the web. SSL certificates have public and private key pair and identification information. When a client or a browser is directed to a secured domain, the server would share the public key with the client. Afterwards, an encryption method is established, with the client confirming that it trusts the SSL certificate issuer. When the whole process is through, a secure session is made, and then message and data shared are secured.

An SSL is a cryptographic protocol that secures communication on the internet. Segments of network connections are encrypted in different ways. Key exchange requires asymmetric encryption, while privacy requires symmetric encryption. On the other hand, message integrity requires message authentication codes. These protocols come in several versions used widely in various applications like web browsing, emailing, and instant messaging.

SSL certificates are essentially digital files or codes with two main functions-verification and data encryption. An SSL certificate has information about the identity of a website. It will show this information to the visitors after clicking on the browser's padlock symbol. Data encryption secures private information exchanged on the website. This ensures that data exchanged will not be intercepted by a third party.

Website owners should find a reliable SSL certificate authority that will provide the certificate. A trusted Certificate Authority or CA is necessary. Not everyone can receive one, though, because there are stringent policies to follow in order to obtain one. But that certificate is essential, for it makes your website trustworthy.

There are different types of certificates, like dedicated SSL certificate, shared certificates, and so on. Choosing the kind that you want or need involves some research. You only need to know what kind suits you. Different types come in different prices. SSL certificate suppliers are all online, so you should not have a hard time looking for them. It pays to shop around.

If you want a specifically assigned SSL certificate, you can choose a dedicated one, which are assigned to respective domain names. This means you need to obtain a unique domain name. This type of certificate is the most expensive of all types of certificates.

A shared kind is different, as the name implies. It can be supplied by web hosts and used by their customers. But this type will not make your domain name visible. That is why they usually offer it free.

You can't use someone else's certificate, because your website visitors may have problems getting to your website. They will not be able to see your information when they verify the certificate. Instead, they will see the information of the true owner. Worse, modern browsers will show an error page prompting the visitor not to proceed.

Is it possible to have a free one? It is, but do not expect that a free one would offer the same level of security that a paid one does. Free SSL's have unreliable encryption, thus faintly supporting your website's security.

Reality Overtakes Fiction: We Are Already at War, Albeit Electronic, But War All the Same   An Explanation of CISPA for Small Businesses   Protect Your Privacy With Reputation Management   Top 5 Reasons to Check Website Security   

SSL Certificates - Do You Need One For Your Site?

SSL stands for secure socket layer and is a protocol for managing the secure interactions between a web browser and a web server; it works by encrypting such information as credit card numbers, logins, passwords and the like. Banks and online merchants use SSL to maintain the security of their websites.

If you sell products or services directly from your site and except credit card payments it's a good idea to have SSL; it instills confidence in your customers by making them feel safe to use their credit cards on your website. SSL is also necessary if you have created a Canvas or Page Tab app in facebook, such as a welcome page. Facebook requires secure connections to ensure all those using HTTPS (SSL cert.) still have the same functionality of HTTP users (non-secured).

Before you can begin you will need to verify that your hosting account supports SSL. You will also need to purchase an SSL certificate from a retailer; be aware that there are many grades of SSL certificates to choose from, most people will do fine with the basic level. Once you've purchased a certificate you will need to install it onto your server.

There are a number of methods to install SSL onto your server depending on the type of software your hosting company uses. This article will go over installing SSL using cPanel. CPanel is a web-based administration tool that is supplied by many hosting companies and is used to setup and control a web page or site.

Private Keys

The first step is to create a private key. A private key is a string of characters that a computer uses to encode or decode encrypted messages it receives. The private key file must be used with the specific SSL certificate for which it is created. This private key is secret and should not be given out. There is no way to recover a private key file if it is lost.

Login to your cPanel control panel, the information on how to do this was supplied by your hosing company. Click on SSL / TLS Manager Icon in the security window. Scroll to the bottom of the screen and select the domain name you want the SSL installed on. Select the key size, the bigger the key the more secure. Finally, click Generate to create your new key and click "Return to SSL Manager".

SSL Certificate Signing Request (CSR)

A CSR is a request which you send to a certificate retailer asking them to grant you an SSL certificate. You must have a key before generating a CSR.

Under "Generate a New Certificate Signing Request" select the Host; the site the SSL is to be installed on.

Fill in all the required information

Country State City Company - you can use the name of your website. Company Division - you can use the niche you are working in. Email address - this is where the SSL certificate will be sent Pass Phrase - Not required, it's a challenge password used by Apache at startup to decrypt your SSL private key.

Once all the information is complete click the "Generate" button to create the certificate. Make a copy of the CSR, you will need it when purchasing the SSL certificate and then click "Return to SSL Manager".

Purchase SSL Certificate

Cpanel is now ready to accept a new SSL certificate. Do a search for "SSL certificates" to find a retailer.

Purchase a certificate and fill in the required information. You will be asked to paste the CSR that you generated in cPanel into a form to complete the transaction. Confirm you are the site owner - each retailer will be a bit different, some may have phone confirmation others will have email or both. Once you have confirmed you are the owner of the site the retailer will send you the SSL certificate and an intermediate CA certificate which you will install using cPanel.

Install the Certificate

Know that you have all the certificates you are ready to install them on cPanel. Copy the certificates you received from your retailer and the key you generated at the beginning into a word pad document for easy access.

Go back to cPanel and the SSL / TLS Manger Click the "Setup a SSL certificate to work with your site" at the bottom of the page. If this link does not appear contact your hosting company. Select your domain from the drop down menu. Copy the SSL Certification and paste it into the "Certificate (CRT)" window. Copy the Key and paste it into the "Key (KEY)" window. Copy the intermediate CA and paste it into the "Ca Bundle (CABUNDLE) window.

With all the certificates and the key in place click the "Install Certificate" button. If no errors where made you will get a confirmation that the SSL certificate was installed. Keep in mind that each retailer may name the certificates in a slightly different manner.

If the retailer has a site seal that you can apply to your website that confirms you have SSL, I suggest doing so because it gives your visitors and customer's piece of mind while they shop on your site.

If you run into a problem simply erase and start again, cPanel looks very intimidating but it is fairly user friendly. Give yourself a few hours to accomplish the entire process from shopping for the certificate to the installation. With the SSL installed your customers can now shop on your site with the confidence that their private information is safe.

Reality Overtakes Fiction: We Are Already at War, Albeit Electronic, But War All the Same   An Explanation of CISPA for Small Businesses   Protect Your Privacy With Reputation Management   Top 5 Reasons to Check Website Security