What Is SSL And Why Do I Need It?
If you are dealing with sensitive data then you need a way to make sure it is protected. There's no point in making it easy for phishers and other fraudsters to get hold of sensitive information such as passwords and credit card details. That's why every online retailer of note protects your data - and you can tell it's protected when you see the tiny padlock on your browser window and the 'https' prefix on the website address. This protection is handled through Secure Sockets Layer (SSL) technology. The technology was created by Netscape in 1994.
How Does SSL Work?
SSL encrypts sensitive information as it leaves one computer. The data is then decrypted at the other end. If you've ever used PGP then you will know about public and private encryption keys. SSL uses the same principle. There is a public key which is used to encrypt data such as credit card numbers, identity information, drivers' license and social security numbers. When this type of information is entered on a secure website, a unique public session key is generated. When the information reaches the destination server, the private key decrypts the data. Anyone who tries to snoop on the data during the transfer should see only random data, rather than the information you want to keep private.
An SSL certificate is created by a certificate provider to be used on a particular server and domain. The certificate is created by a third party, just like getting in a firm to handle security. There are several well known SSL providers.
Major SSL Providers: GeoTrust
GeoTrust provides four different SSL certificates and two wildcard SSL certificates. The purchase price ranges from $249 to $599 for the SSL certificates (with renewal slightly cheaper) and from $995 to $1499 for the wildcard SSL certificates. Renewal of the wildcard SSLs is the same as the purchase price. SSL certificates are available to secure up to four domains, with 256 bit encryption. The certificate root is Equifax and most SSL certificates can be issued in ten minutes. Warranty amounts are between $10,000 and $250,000 depending on the certificate you choose. The certificate includes a Geotrust site seal, which may include real time date and time information as well as company information.
Major SSL Providers: Thawte
Thawte provides six different SSL certificates including one wildcard SSL certificate. The purchase price ranges from $149 to $899 for one year SSL certificates (with renewal slightly cheaper) and the wildcard SSL certificate is priced at $799. Renewal of the wildcard SSL is the same as the purchase price. Encryption level is up to 256 bit and Thawte also provides SGC super certificates. It doesn't take long to get a Thawte certificate though you will have to provide a lot of identity information to get one.
Major SSL Providers: Comodo
Comodo offers ten different types of SSL certificates, including two wildcard certificates and a free 90 day SSL certificate that can be used as a trial before buying a certificate. Certificate pricing ranges from $79.95 to $699.95, with wildcard SSLs priced at $449.95 to $749.95. Encryption is up to 256 bit, with the warranty amount up to $250,000 depending on the certificate purchased. Comodo also includes a HackerGuardian vulnerability scan with most SSL certificate purchases.
Major SSL Providers: Verisign
Verisign offers several SSL options, priced at between $399 and $1,499 for a one year certificate. With 128 bit encryption, the warranty amounts for Verisign SSL certificates are between $100,000 and $250,000. They also offer web based SSL management packages in various price ranges for bundles of ten or more certificates. Like other providers, Versign's SSL range includes some certificates with extended validation (EV) and server-gated cryptography (SGC). This is the latest in online security standards.
There are many other SSL providers, but these are the ones who account for most of the SSL market. Many others are resellers of this technology, and you may be able to get a better deal by choosing this route. Whichever provider you choose, look for the encryption level, the number of sites and subdomains you can protect and for user friendly features such as the green bar that lets you know a site is safe.
How To Install Your SSL Certificate
Installation of the SSL certificate will vary depending on the hosting control panel and host you are using. In many cases, Cpanel, Plesk, H-Sphere and others will provide their own instructions for how to install SSL. There is usually an SSL button on the control panel, which will walk you through the required steps. Cpanel, for example, allows you to paste the code for an SSL certificate into a form to generate the certificate. Although the steps you may follow may be different, most hosting providers have something similar. In many cases, there is a four step process, where you are required to generate some information on your server, pass this information to the SSL certificate provider, receive your certificate by email and install your certificate.
Questions To Consider With SSL
If you are dealing with sensitive data, then you definitely need SSL. The question is, which certificate and which provider do you choose? Many providers allow you to have trial certificates, so you can test the installation process and functioning. This is one feature that can help you.
However, you also have to consider whether you need your SSL certificate for a single domain or for a domain and multiple subdomains. If you have only one domain, then you just need a single certificate which you should install where it will protect the whole site. However, if you have multiple subdomains, then a wildcard SSL certificate will be your best bet. Look for one that allows unlimited subdomains - most do. You may also need to consider whether you need an SSL certificate that allows you to provide security for many domains.
The final decision may come down to the level of support that is available. All of the providers have support documents on their web pages and provide web, email and telephone support. This can be key, especially if you are new to SSL
If you are dealing with sensitive data then you need a way to make sure it is protected. There's no point in making it easy for phishers and other fraudsters to get hold of sensitive information such as passwords and credit card details. That's why every online retailer of note protects your data - and you can tell it's protected when you see the tiny padlock on your browser window and the 'https' prefix on the website address. This protection is handled through Secure Sockets Layer (SSL) technology. The technology was created by Netscape in 1994.
How Does SSL Work?
SSL encrypts sensitive information as it leaves one computer. The data is then decrypted at the other end. If you've ever used PGP then you will know about public and private encryption keys. SSL uses the same principle. There is a public key which is used to encrypt data such as credit card numbers, identity information, drivers' license and social security numbers. When this type of information is entered on a secure website, a unique public session key is generated. When the information reaches the destination server, the private key decrypts the data. Anyone who tries to snoop on the data during the transfer should see only random data, rather than the information you want to keep private.
An SSL certificate is created by a certificate provider to be used on a particular server and domain. The certificate is created by a third party, just like getting in a firm to handle security. There are several well known SSL providers.
Major SSL Providers: GeoTrust
GeoTrust provides four different SSL certificates and two wildcard SSL certificates. The purchase price ranges from $249 to $599 for the SSL certificates (with renewal slightly cheaper) and from $995 to $1499 for the wildcard SSL certificates. Renewal of the wildcard SSLs is the same as the purchase price. SSL certificates are available to secure up to four domains, with 256 bit encryption. The certificate root is Equifax and most SSL certificates can be issued in ten minutes. Warranty amounts are between $10,000 and $250,000 depending on the certificate you choose. The certificate includes a Geotrust site seal, which may include real time date and time information as well as company information.
Major SSL Providers: Thawte
Thawte provides six different SSL certificates including one wildcard SSL certificate. The purchase price ranges from $149 to $899 for one year SSL certificates (with renewal slightly cheaper) and the wildcard SSL certificate is priced at $799. Renewal of the wildcard SSL is the same as the purchase price. Encryption level is up to 256 bit and Thawte also provides SGC super certificates. It doesn't take long to get a Thawte certificate though you will have to provide a lot of identity information to get one.
Major SSL Providers: Comodo
Comodo offers ten different types of SSL certificates, including two wildcard certificates and a free 90 day SSL certificate that can be used as a trial before buying a certificate. Certificate pricing ranges from $79.95 to $699.95, with wildcard SSLs priced at $449.95 to $749.95. Encryption is up to 256 bit, with the warranty amount up to $250,000 depending on the certificate purchased. Comodo also includes a HackerGuardian vulnerability scan with most SSL certificate purchases.
Major SSL Providers: Verisign
Verisign offers several SSL options, priced at between $399 and $1,499 for a one year certificate. With 128 bit encryption, the warranty amounts for Verisign SSL certificates are between $100,000 and $250,000. They also offer web based SSL management packages in various price ranges for bundles of ten or more certificates. Like other providers, Versign's SSL range includes some certificates with extended validation (EV) and server-gated cryptography (SGC). This is the latest in online security standards.
There are many other SSL providers, but these are the ones who account for most of the SSL market. Many others are resellers of this technology, and you may be able to get a better deal by choosing this route. Whichever provider you choose, look for the encryption level, the number of sites and subdomains you can protect and for user friendly features such as the green bar that lets you know a site is safe.
How To Install Your SSL Certificate
Installation of the SSL certificate will vary depending on the hosting control panel and host you are using. In many cases, Cpanel, Plesk, H-Sphere and others will provide their own instructions for how to install SSL. There is usually an SSL button on the control panel, which will walk you through the required steps. Cpanel, for example, allows you to paste the code for an SSL certificate into a form to generate the certificate. Although the steps you may follow may be different, most hosting providers have something similar. In many cases, there is a four step process, where you are required to generate some information on your server, pass this information to the SSL certificate provider, receive your certificate by email and install your certificate.
Questions To Consider With SSL
If you are dealing with sensitive data, then you definitely need SSL. The question is, which certificate and which provider do you choose? Many providers allow you to have trial certificates, so you can test the installation process and functioning. This is one feature that can help you.
However, you also have to consider whether you need your SSL certificate for a single domain or for a domain and multiple subdomains. If you have only one domain, then you just need a single certificate which you should install where it will protect the whole site. However, if you have multiple subdomains, then a wildcard SSL certificate will be your best bet. Look for one that allows unlimited subdomains - most do. You may also need to consider whether you need an SSL certificate that allows you to provide security for many domains.
The final decision may come down to the level of support that is available. All of the providers have support documents on their web pages and provide web, email and telephone support. This can be key, especially if you are new to SSL
No comments:
Post a Comment