Friday, September 7, 2018

Let's Understand About SSL Connection

SSL certificate is small data file that contains data like organization name, country name, primary domain, sub-domains, expiration data, CA etc, which is provided by the owner of a website at the time of loading SSL certificate. In return, a single IP address is issued to that website, which in turn serves main domain as well as linked sub-domains. It means that it will not only provide internet security to main domain but also, to other sub-domains which are linked with the main domain.

Need for SSL Connection :
In normal cases, data is transferred or shared in simple text form, which gives advantage to hackers to misuse or modify it easily, which is a big security threat. To overcome this, SSL provides an encrypted link, which converts the data into non-readable form, and then this encrypted data is transferred between the server and the browser through secure link that nullifies the risk of data being hacked. To get this kind of security, all you need is SSL Certificate.


 How SSL Certificate provides security :

SSL certificate has a pair of keys; one is a public key and another one is a private key. To establish secure/encrypted connection, these keys work together. This certificate also contains identity of the owner and in technical language it is known as SUBJECT. CSR (Certificate Signing Request) must be created to get a SSL certificate, which in return creates a set of keys (public and private key). Then CSR data file that contains public key is sent to CA (Certificate Authority). This data file is used for creating data structure to match private key but due to security reasons CA can never see the private key. Once the certificate is issued by CA, install it on your server.



When installation of SSL certificate is complete, this server certificate is connected with CAs certificate in order to establish reliability and credibility of SSL certificate. It is important to buy SSL certificate from authorized or trusted Certificate Authority (CA) because most of browsers come with pre-installed list of trusted CAs and will only acknowledge them. So the user can trust the site with Comodo SSL certificate and can feel free to share private and sensitive information required by that particular site

No comments:

Post a Comment