SSL Certificates - Secure Server Certificates
出典: くみこみックス
SSL certificates are typically utilized with ecommerce shopping carts, or anyplace you want to collect data from a user securely on your web site. If you use a secure server certificate with a form and that form emails the outcomes to you keep in mind that the email is not secure.
SSL (Secure Sockets Layer): Creates an encrypted link in between a web server and a browser. CA (Certificate Authority): The vendor you will get the secure server certificate from...
What is SSL?
SSL certificates are usually employed with ecommerce shopping carts, or anyplace you want to collect information from a user securely on your web site. If you use a secure server certificate with a form and that form emails the results to you maintain in thoughts that the e-mail is not secure.
SSL (Secure Sockets Layer): Creates an encrypted link between a internet server and a browser. CA (Certificate Authority): The vendor you will get the secure server certificate from CSR (Certificate Signing Request): A text file generated by a internet server. A CSR looks like this:
-----Start NEW CERTIFICATE REQUEST-----
MIIDGgBNAGkAYwByAG8AcwBvAGYAdAAgAFIAUwBBACAAUwB
AG4AZQBsACAAQwByAHkAcAB0AG8AZwByAGEAcABoAGkAYwl
L0ygNwwNIvKLMPq4/LcUkZ9Oo4AssXW5mvvhHWGz2RWYRhrw8o
-----Finish NEW CERTIFICATE REQUEST-----
First, you want to choose whether or not to use your hosting shared SSL certificate if they supply it. The URL to your retailer will look something like:
https://theirserver.com/youruserid/your/path/to/retailer.html
Or software authentication do you want to get your personal SSL certificate? The URL will appear like:
https://yourdomainname.com
If you determine to use your hosts' shared secure server certificate, then all you require to do is find out the path you require to use to call your files securely, and you will be on your way.
If you make a decision to get your personal entrust truepass SSL certificate, this is normally what occurs.
You 1st need 2 factor authentication to determine who you are going to get your SSL certificate from. It is a great concept to make sure your host supports your particular vendor. Some certificate authority vendors are:
* Thawte
* Verisign
* Comodo
* You can also review many vendors at a glance at WhichSSL
Before obtaining your personal SSL certificate, you will require to do some reading on what your selected Certificate Authority demands for a secure certificate, and you'll also require to come up with some documentation. There are many actions to purchasing a secure server certificate, as soon as you have decided on a vendor.
This is an overview, not written in stone. Each CA is different, so make certain you read their documentation and what they demand. Here is an thought of what they want:
All documentation that is requested must match *precisely*. Secure certificate authorities will verify that your organization actually exists, so they know they are issuing to the appropriate firm. You will want to prove that the Organization Name and the Domain name are in reality yours to use.
Steps you'll be taking:
* Gather necessary documentation
* Have your host produce a CSR
* Complete certificate authority on the internet application
* Certificate authority will method your request
* Pickup and install your SSL certificate (normally an URL is emailed to you to download the secure server certificate)
* Based on the vendor, it can take a couple of hours to a few days.
* Send secure certificate to host for installation. (Send in plain text)
When your web hosting provider receives this data they will produce the CSR and send it back to you in plain text. You then send it on to Verisign or Thawte, or whoever you have chosen as your secure certificate authority. They will then create a SSL certificate for you which you will send back to your host for installation. Your net host could charge a fee for installation in addition to what your SSL certificate vendor charges.
Something to think about:
If you have decided to purchase your own SSL certificate, you will want to make a decision how you want your URL to be known as. If you, as a rule, call your domain name in your coding as www.yourdomainname.com, then make confident you indicate this to your host when you request a CSR from them. If you don't, and you get the certificate for yourdomainname.com (without having the www), this will result in browser errors, producing the certificate seem insecure, and you will need to have to adjust your coding.
Often use your self or your organization as technical speak to.
How to tell if a site is secure?
After you have browsed to a internet site securely using https:// in the URL, appear on the lower correct hand side of your browser. You ought to see a closed lock. This will tell you the website is secure.
