01. What is Secure Sockets Layer (SSL)?
Ans. SSL is an abbreviation used for Secure Socket Layer. It protects the data transfer over the http using the cryptography technique by using a server’s SSL certificate.
Ans. SSL is an abbreviation used for Secure Socket Layer. It protects the data transfer over the http using the cryptography technique by using a server’s SSL certificate.
02. What is cryptography?
Ans. It is an art of protecting information by encrypting it or says by transforming it into a format which we cannot understand. Only those who possess a secret key can decrypt the message into a readable format. Cryptography is used to protect e-mail messages, credit card information and corporate date.
Ans. It is an art of protecting information by encrypting it or says by transforming it into a format which we cannot understand. Only those who possess a secret key can decrypt the message into a readable format. Cryptography is used to protect e-mail messages, credit card information and corporate date.
03. Can I try an SSL Certificate before purchasing?
Ans. You can test SSL in a pre-production server environment with a trial SSL Certificate free for 14 days. SGC-enabled and Extended Validation SSL Certificates are not available in a trial version.
Ans. You can test SSL in a pre-production server environment with a trial SSL Certificate free for 14 days. SGC-enabled and Extended Validation SSL Certificates are not available in a trial version.
04. What encryption strength do I need for my Web site?
Ans. Best security practices are to install a unique certificate on each server and choose a True 128-bit Certificate by purchasing a Server Gated Cryptography (SGC)-enabled SSL Certificate. A unique certificate keeps your private keys protected, and an SGC-enabled certificate ensures that every site visitor, no matter what browser or operating system they use, connects at the highest level of encryption their system is capable of. You need 128-bit or better encryption if you process payments, share confidential data, or collect personally identifiable information such as social security or tax ID number, mailing address, or date of birth. You need 128-bit or better encryption if your customers are concerned about the privacy of the data they send to you.
Ans. Best security practices are to install a unique certificate on each server and choose a True 128-bit Certificate by purchasing a Server Gated Cryptography (SGC)-enabled SSL Certificate. A unique certificate keeps your private keys protected, and an SGC-enabled certificate ensures that every site visitor, no matter what browser or operating system they use, connects at the highest level of encryption their system is capable of. You need 128-bit or better encryption if you process payments, share confidential data, or collect personally identifiable information such as social security or tax ID number, mailing address, or date of birth. You need 128-bit or better encryption if your customers are concerned about the privacy of the data they send to you.
05. What do we mean by High Assurance Certificates?
Ans. High Assurance Certificates are fully authenticated certificates that produce confidence and trust. They have a 4 step authentication and verification process that verifies the domain name and company legitimacy. A visitor is fully satisfied that his information or transaction is fully secured if a website has a HA Cert. These are used by e-commerce websites with high value transactions and where there is sharing of confidential data. Information such as the Domain ownership, Company name, Address, Expiry date of the Certificate and Details of the CA are included within the certificate.
SSL Genie's Premium Certificates, VeriSign® SSL Certificates etc. are high assurance certificates for high risk high value transaction segment.
Ans. High Assurance Certificates are fully authenticated certificates that produce confidence and trust. They have a 4 step authentication and verification process that verifies the domain name and company legitimacy. A visitor is fully satisfied that his information or transaction is fully secured if a website has a HA Cert. These are used by e-commerce websites with high value transactions and where there is sharing of confidential data. Information such as the Domain ownership, Company name, Address, Expiry date of the Certificate and Details of the CA are included within the certificate.
SSL Genie's Premium Certificates, VeriSign® SSL Certificates etc. are high assurance certificates for high risk high value transaction segment.
06. I want to buy the most basic entry level certificate. Which Certificate should I buy?
Ans. Flash SSLGenie Domain Validated certificates, VeriSign® Secure Site certificate etc. are the entry level certificates that provide medium level security. It is a one step verification and authentication process that verifies only the domain name. The domain is validated using an automated system they are used by websites which have a transfer of low value transactions and information which is not highly confidential.
Ans. Flash SSLGenie Domain Validated certificates, VeriSign® Secure Site certificate etc. are the entry level certificates that provide medium level security. It is a one step verification and authentication process that verifies only the domain name. The domain is validated using an automated system they are used by websites which have a transfer of low value transactions and information which is not highly confidential.
07. What is the benefit of buying a site seal?
Ans. The site seal allows your customers to identify and confirm that your web site is using a leading SSL certificate. The seal resides on your web pages, identifying your site as genuine, authentic and validated by an independent third- party. The various advantages of having the site seal on your website are :
• By clicking on the SSL Trusted Site Seal visitors will get real-time confirmation of the validity of the certificate on the web server that they are connected to.
• It is a secure image with a direct link to the certificate server for verification.
• Tells customers that they can trust their online transactions conducted with you.
• Can be displayed on multiple secure pages.
• Is simple to install.
• Contains a date stamp reflecting your customer's time zone, providing real-time assurance of the authenticity of your site.
Ans. The site seal allows your customers to identify and confirm that your web site is using a leading SSL certificate. The seal resides on your web pages, identifying your site as genuine, authentic and validated by an independent third- party. The various advantages of having the site seal on your website are :
• By clicking on the SSL Trusted Site Seal visitors will get real-time confirmation of the validity of the certificate on the web server that they are connected to.
• It is a secure image with a direct link to the certificate server for verification.
• Tells customers that they can trust their online transactions conducted with you.
• Can be displayed on multiple secure pages.
• Is simple to install.
• Contains a date stamp reflecting your customer's time zone, providing real-time assurance of the authenticity of your site.
08. What is an SSL VPN?
Ans. An SSL VPN (Secure Sockets Layer Virtual Private Network) is a form of VPN that can be used with a standard Web browser. In contrast to the traditional IPsec (Internet Protocol Security) VPN, an SSL VPN does not require the installation of specialized client software on end users' computers.
The SSL VPN can be a good choice for schools, libraries and public kiosks where trust can be an issue but easy access is also important. Applications include Web-based e-mail, business and government directories, databases for educational institutions, file sharing, remote backup, remote system management and consumer-level e-commerce.
SSL Genie Certificates are specifically suited for this purpose.
Ans. An SSL VPN (Secure Sockets Layer Virtual Private Network) is a form of VPN that can be used with a standard Web browser. In contrast to the traditional IPsec (Internet Protocol Security) VPN, an SSL VPN does not require the installation of specialized client software on end users' computers.
The SSL VPN can be a good choice for schools, libraries and public kiosks where trust can be an issue but easy access is also important. Applications include Web-based e-mail, business and government directories, databases for educational institutions, file sharing, remote backup, remote system management and consumer-level e-commerce.
SSL Genie Certificates are specifically suited for this purpose.
09. How can I come to know if the website I am on is SSL safe?
Ans. When a user enters a site that is SSL enabled, he will see a "pad lock" at the browser's status bar indicating that the page is protected by SSL. When a site is SSL enabled, it means that the data transmitted between the browser and the site is encrypted. For example, Web image's signup page is SSL enabled.
When a website has an SSL Certificate integrated, its address normally starts with https:// instead of the regular http://. The addition of "s" indicates that the connection to the website's server is now secure and private data that is entered into the website can't be read by anyone except those authorized to read it.
Ans. When a user enters a site that is SSL enabled, he will see a "pad lock" at the browser's status bar indicating that the page is protected by SSL. When a site is SSL enabled, it means that the data transmitted between the browser and the site is encrypted. For example, Web image's signup page is SSL enabled.
When a website has an SSL Certificate integrated, its address normally starts with https:// instead of the regular http://. The addition of "s" indicates that the connection to the website's server is now secure and private data that is entered into the website can't be read by anyone except those authorized to read it.
10. What is the difference between SSL and s-http?
Ans. Apart from SSL, another protocol for transmitting data securely over the World Wide Web is Secure HTTP (S-HTTP). Whereas SSL creates a secure connection between a client and a server, over which any amount of data can be sent securely, S-HTTP is designed to transmit individual messages securely. SSL and S-HTTP, therefore, can be seen as complementary rather than competing technologies. Both protocols have been approved by the Internet Engineering Task Force (IETF) as a standard.
Ans. Apart from SSL, another protocol for transmitting data securely over the World Wide Web is Secure HTTP (S-HTTP). Whereas SSL creates a secure connection between a client and a server, over which any amount of data can be sent securely, S-HTTP is designed to transmit individual messages securely. SSL and S-HTTP, therefore, can be seen as complementary rather than competing technologies. Both protocols have been approved by the Internet Engineering Task Force (IETF) as a standard.
References :
• http://www.livehelpgenie.com/
• www.verisign.com/ssl/ssl-information-center/how-ssl-security-works
• http://www.livehelpgenie.com/
• www.verisign.com/ssl/ssl-information-center/how-ssl-security-works
3 comments:
set of questions that you have taken are good...
Thank you soniya and keep visiting our blog...
I didn't really understand how to set up a ssl cert for my website, so I went with a company called SSL 247 and they sorted it all out. I needed to get this done as I am launching my own retail website and need to protect customers payment details if I am to have any hope of making it a success.
Post a Comment