SSL certificate for the site: what is it for?
Data protection is becoming more relevant asdevelopment and dissemination of information technology. Not the last role in this business is played by an SSL certificate for the site. What is it for? How to install / connect the certificate? Is it possible to test its performance?
general information
SSL certificate
- The domain name for which the certificate is created.
- Legal entity owning it.
- The physical location of the subject for which the certificate is being created.
- Validity.
- Details of the company that formed the certificate.
This file is used to confirm the results of the identification of the owner and the legality of the actions taken. This is what the SSL certificate for the site is for.
What are they like?
- With domain verification. They are also called entry level certificates. This is the most common option that is ubiquitous. The time spent on their issuance takes from two to ten minutes. You can also get a free SSL certificate for the site. This does not require the presence of special documents, and simply checks the level of human access to a specific resource (confirming domain ownership). So this option is ideal for small projects and sites that do not need a lot of trust from visitors.
- With email checking. In this case, the certification center will send a letter where it will be necessary to follow the link and confirm the validity of the action. In this case, the letter goes to the address that was specified during domain registration.
- Check with DNS. In this case, the requirement is to create a special record in the DNS, which is checked by the certification authority.
- Using a special file. In this case, the owner must upload the provided document to his server. After the certification authority is satisfied that this requirement is met, a certificate is issued.
Here's how to connect an SSL certificate to the site. What way you like it - and choose this. But there is another possibility.
Option for reputable services and companies
How can I know that the site is safe?
There are many ways to do this. The easiest is to simply look at the address bar of the browser. If it is green, then everything is in order. And if not? Do not rush to draw conclusions, it is likely that there is protection. To check the SSL certificate of the site in this case, you need to view a brief information about it by clicking on the appropriate button. Each browser places it in its own way, but most often they can be found to the left of the address bar. Also, as an option, use special applications and services that allow you to find out if the data is protected, what is transmitted from the site or not.
Where to get them?
Why do site owners increasingly use SSL?
How does all this work?
So, we already know that certificates are used.to ensure confidential communication between the server and the client. But how does the encryption mechanism work? The data in this case is encoded using the public key. Then they are forwarded. The recipient has a private key. And only using it, you can decode the information and find out what it is about. To ensure that everything happens without problems, protocols of record and handshake are used. The first is necessary in order to determine the format that will be used for data transfer. The handshake protocol is needed during the first connection between the client and the server when exchanging a series of messages. When the page of the site where there is a certificate opens, the browser receives identification information from the server. From him comes a copy. After receiving the certificate, the browser begins to check its authenticity. In the case of a positive outcome, he reports this to the server. After that, a virtually signed agreement is sent that allows encrypted data transfer. And after that, with the help of a certificate, any transmitted data is encrypted, which goes to the client. At the same time, the usual http transfer protocol is changed to https. The last letter s means that the channel is protected.
Conclusion
But why, if there is a rather extensiveA set of methods of protection, still committed offenses in this size? The fact is that from a technical point of view, everything looks good. The same SSL hack is now on the verge of science fiction. But, alas, there is a human factor. The banal indulgence on the part of the person, the neglect of the safety rules and the malicious intent of the responsible officials of the relevant structures - all this leads to the fact that fraud in this area reaches a truly enormous scale. Some risks are outside our area of responsibility. But in other cases, the study of safety behavior with information technology can significantly reduce the ability of criminals to rob people.