How SSL Certificates Work

Secure Sockets Layer (SSL) technology is comprised of cryptographic security protocols that provide security and data integrity for communications over networks such as the Internet. SSL certificates are used by companies and web sites to protect online communications for transactions such as confidential data, personal details, login information, passwords or credit card information. SSL technology protects your site and server and makes it easy for your users to trust you.

The Advantages of SSL Certificate Services

• An SSL certificate enables encryption of sensitive information during online transactions.
• SSL certificates contain unique, authenticated information about the certificate owner.
• A Certificate Authority (CA) verifies the identity of the certificate owner when it is issued.

Who Requires an SSL Certificate?

• Individuals or organizations that accept online orders or who process any sensitive financial information.
• Servers or sites that offer login or sign-in services via web page and password.
• The processing of any sensitive privacy data as declared forth in legal Privacy Acts.
• In compliance and in accordance with privacy and security requirements.
• For individuals and organizations that value the privacy of their customers.

Why Authentication Matters

Like a passport or a driver’s license, an SSL certificate is issued by a trusted source known as a Certificate Authority (CA). Certificate Authorities verify the existence of your business, the ownership of your domain name, and your authority to apply for the certificate.

Each SSL certificate is created for a particular server in a specific domain for a verified business entity. When an SSL handshake occurs, the browser requires authentication information from the server. By clicking the closed padlock within the browser window or certain SSL trust marks, the web site visitor can visually verify the authenticated organization name. Authentication gives visitors a way to establish trust with your organization.

Extended Validation Authentication

Extended Validation (EV) SSL Certificates meet the highest standard in the Internet security industry for web site authentication as required by Certificate Authorities. EV SSL Certificates give high-security web browsers information to clearly display a web site’s organizational identity. The high-security web browser’s address bar turns green and reveals the name of the organization that owns the SSL certificate and the SSL Certificate Authority that issued it. Extended Validation gives web site visitors an easy and reliable visual method to establish online trust.

Types of Validation

SSL certificates are available in three types of authentication: Extended Validation, Full Organization Validation and Domain Validation. Depending upon your organization’s needs and the types of transactions your business will partake in will determine the type of authentication that may be necessary. All SSL certificates include high levels of data encryption and trigger web browsers to visually display a closed padlock and the https address prefix. However, not all certificates provide the same level of validation that ensures the SSL Certificate’s owner is a true legitimate business.