SSL stands for : Secure Sockets Layer which is a standard security technology for establishing an encrypted link between a server and a client—typically a web server (website) and a browser; or a mail server and a mail client. By using SSL certificates, you can accept credit cards, social security number from your site and allows sensitive information to be transmitted securely.
Generally, SSL is a security protocol which describe how algorithms should be used, in this case, the SSL protocol determines variables of the encryption for both the link and the data being transmitted.
How it works with your browser?
SSL Certificates have a key pair: a public and a private key. These keys work together to establish an encrypted connection. The certificate also contains what is called the “subject,” which is the identity of the certificate/website owner.
For getting a certificate, you must create a Certificate Signing Request (CSR) on your server. This process creates a private key and public key on your server. The CSR data file that you send to the SSL Certificate issuer (called a Certificate Authority or CA) contains the public key. The CA uses the CSR data file to create a data structure to match your private key without compromising the key itself. The CA never sees the private key.
Once you receive the SSL Certificate, you install it on your server. You also install a pair of intermediate certificates that establish the credibility of your SSL Certificate by tying it to your CA’s root certificate. The instructions for installing and testing your certificate will be different depending on your server.
More important : An SSL Certificate issued by a CA to an organization and its domain/website verifies that a trusted third party has authenticated that organization’s identity. Since the browser trusts the CA, the browser now trusts that organization’s identity too. The browser lets the user know that the website is secure, and the user can feel safe browsing the site and even entering their confidential information.
Do You Need SSL For Your Website?
If your site collects credit card information/secure login credentials then you are required by the Payment Card Industry (PCI) to have an SSL Certificate. If your site has a login section or sends/receives other private information (street address, phone number, health records, etc.), you should use SSL Certificates to protect that data.
This makes your user to process transactions in secure manner and with protecting their info.
Types:
-
Domain Validation SSL Certificate
This is the simplest type of ssl and is available for businesses and individuals. They are very simple to get, just requiring an email validation and no other paperwork. You will be sent an email that you have to reply to and this will allow the certificate to be generated. This is a very quick process.
-
Business Validation SSL Certificate
This is next level of SSL mainly used for business/ecommerce sites and this certificate needs some paperwork. It is necessary to go through the email validation process and then send business documentation as well. This is a manual check and therefore can take up to three days to complete the necessary checks. It can be worth it though as the security provided is higher and therefore if you have a business ecommerce site can provide the trust needed to encourage business.
-
Extended Validation SSL Certificate
Have you ever saw the Green Address bar with site name in your browsers address bar? It is achieved with this type of SSL. This is the certificate that provides the highest amount of cover and therefore makes customers feel safest. It will mean that you will get a green address bar which will allow customers to see that the site has been secured at a quick glance and It is necessary to provide correct documents to get this certificate issued and therefore it is not issued in quick manner.
-
Wildcard SSL Certificates
This certificate will provide secureness for subdomains on a domain name with one IP address. This means that any subdomains will also have the same amount of cover as the main domain as this will be covered as well. This can save a lot of money as you will not have to pay for each sub domain separately but it will also save time as only one application process has to be gone through. It is very much better than having a separate certificate for each subdomain.
-
Subject Alternative Name (SAN) SSL Certificates
These can also be called Unified communication Certificates or UCC. These were specifically made up for Microsoft Office communications Server and Exchange products. The certificate can secure common names or domain names with one certificate which includes internal network names as well as external domain names.
-
Server Gated Cryptography (SGC)
This will allow old 40 bit encryption, which comes with old browsers to be able to get the full 256 bit encryption. This means that you website will be trusted by all users even if they are using old brower versions.
You may choose appropriate ssl as per your requirements , if you have any doubt, email us or get in live chat.