What is SSL (Secure Sockets Layer) ?
SSL (Secure Sockets Layer) provides a secure connection between internet browsers and websites, allowing you to transmit private data online. Sites secured with SSL display a padlock in the browsers URL and possibly a green address bar if secured by an EV Certificate.
So what is SSL used for? The SSL protocol is used by millions of e-Business providers to protect their customers, ensuring their online transactions remain confidential. All web pages that expect their visitors to submit confidential data, including credit card details, passwords or any personal information should use encryption. Web browsers can safely interact with secured sites as long as the site's certificate is from a recognized Certificate Authority, such as Comodo.
The internet has spawned new global business opportunities for enterprises conducting online commerce. However, that growth has also attracted fraudsters and cybercriminals who are ready to exploit any opportunity to steal consumer data such as bank account numbers and credit card details. Unless the connection between a client (e.g. internet browser) and a web server is encrypted, then any moderately skilled hacker can easily intercept and read the traffic.
How can I tell when a site uses SSL?
When a digital certificate is installed on a web page, users will see a padlock icon in the browser address bar. When an Extended Validation Certificates is installed on a web site, the address bar will turn green during secure sessions.
Users on sites with SSL Certificates will also see https:// in the address bar
Who Issues SSL Certificates?
SSL certificates are issued by a recognized Certificate Authority (CA) after confirming the identity and ownership of the company applying for the certificate. Certificates issued to a website are chained to what is known as a 'trusted root' certificate, which is owned by the CA. These root certificates are embedded in what is known as the 'certificate store' in popular internet browsers such as Chrome, Firefox and Internet Explorer.
If a browser encounters a website certificate which chains to a root in its certificate store, then it allows the https connection to proceed. If the browser encounters a certificate which is not chained to a root in its store, then it will warn the end user that the connection is not secure and that they should not submit any confidential information.
What Details are Included in the Certificate?
An SSL certificate is issued to a legally accountable company or individuals and will typically contain the domain name, company name, address, city, state and country. It also contains an issued date and an expiry date and contains details of the CA responsible for issuing the certificate.
How do I Generate Certificate Signing Request?
Creating CSR – A Certificate Signing Request is the first step towards enrolling for a certificate. The exact method you need to use to generate a CSR will depend on your web-server software. To create a CSR, you will typically follow a wizard on your web server software which will ask you to enter domain and identity details such as organization name and address.
How do I Install a Certificate on my Web-Server?
Certificate Installation - The process for installing a certificate depends on your web-server software. Comodo has a range of documentation that explains how to install your certificate on a range of different web-servers.
* IIS Users * Comodo offers a free utility which automates the entire CSR generation and certificate installation processes. It allows you to quickly generate a CSR for your order, easily complete the domain validation process then configure and install your certificate with a single click.Learn More