RathburnBeeman99
出典: くみこみックス
SSL certificates are typically utilized with ecommerce shopping carts, or anywhere you want to collect data from a user securely on your web site. If you use a secure server certificate with a form and that form emails the outcomes to you preserve in thoughts that the e-mail is not secure.
SSL (Secure Sockets Layer): Creates an encrypted link amongst a web server and a browser. CA (Certificate Authority): The vendor you will get the secure server certificate from...
What is SSL?
SSL certificates are generally employed with ecommerce shopping carts, or anyplace you want to collect info from a user securely on your website. If you use a secure server certificate with a form and that form emails the results to you maintain in mind that the email is not secure.
SSL (Secure Sockets Layer): Creates an encrypted link in between a net server and a browser. CA (Certificate Authority): The vendor you will get the secure server certificate from CSR (Certificate Signing Request): A text file generated by a net server. A CSR looks like this:
Begin NEW CERTIFICATE REQUEST-----
MIIDGgBNAGkAYwByAG8AcwBvAGYAdAAgAFIAUwBBACAAUwB
AG4AZQBsACAAQwByAHkAcAB0AG8AZwByAGEAcABoAGkAYwl
L0ygNwwNIvKLMPq4/LcUkZ9Oo4AssXW5mvvhHWGz2RWYRhrw8o
End NEW CERTIFICATE REQUEST-----
1st, you need to determine whether or not to use your hosting shared SSL certificate if they supply it. The URL to your shop will appear a thing like:
https://theirserver.com/youruserid/your/path/to/retailer.html
Or do you want to get your own SSL certificate? The URL will appear like:
If you determine to use your hosts' shared secure server certificate, then all you need to do is find out the path you need to use to call your files securely, and you will be on your way.
If you determine to get your own SSL certificate, this is normally what happens.
You first need to make a decision who you are going to get your SSL certificate from. It is a good idea to make positive your host supports your specific vendor. Some certificate authority vendors are:
- Thawte
- Verisign
- Comodo
- You can also review numerous vendors at a glance at WhichSSL
Ahead of obtaining your personal SSL certificate, you will want to do some reading on what your selected Certificate Authority demands for a secure certificate, and you will also require to come up with some documentation. There are a number of actions to buying a secure server certificate, once you have decided on a vendor.
This is an overview, not written in stone. Each CA is different, so make confident you read their documentation and what they call for. Here is an notion of what they want:
All documentation that is requested must match *exactly*. Secure certificate authorities will verify that your organization in fact exists, so they know they are issuing to the appropriate company. You will need to have to prove that the Organization Name and the Domain name are in reality yours to use.
Steps you will be taking:
- Collect required documentation
- Have your host create a CSR
- Total certificate authority online application
- Certificate authority will method your request
- Pickup and install your SSL certificate (generally an URL is emailed to you to download the secure server certificate)
- Depending on the vendor, it can take a couple of hours to a couple of days.
- Send secure certificate to host for installation. (Send in plain text)
Once your internet hosting provider receives this data they will generate the CSR and send it back to you in plain text. You then send it on to Verisign or Thawte, or whoever you have selected as your secure certificate authority. They will then produce a SSL certificate for you which you will send back to your host for installation. Your internet host could charge a fee for installation in addition to what your SSL certificate vendor charges.
Something to think about:
If you've decided to purchase your own SSL certificate, you will want to make a decision how you want your URL to be called. If you, as a rule, call your domain name in your coding as www.yourdomainname.com, then make confident you indicate this to your host when you request a CSR from them. If you do not, and you get the certificate for yourdomainname.com (with no the www), this will trigger browser errors, producing the certificate seem insecure, and you will require to alter your coding.
Usually use yourself or your company as technical contact.
How to tell if a site is secure?
Right after you have browsed to a internet site securely utilizing https:// in the URL, look on the lower right hand side of your browser. You ought to see a closed lock. This will tell you the website is secure. encryption software entrust authority security manager two factor authentication