Tuesday, February 5, 2019

How Does SSL Connection Work

SSL certificate is a small data file that contains data like organization name, country name, a primary domain, sub-domains, expiration data, CA etc, which is provided by the owner of a website at the time of loading SSL certificate. In return, a single IP address is issued to that website, which in turn serves main domain as well as linked sub-domains. It means that it will not only provide internet security to the main domain but also, to other sub-domains which are linked with the main domain.

It is important to know that every single browser can interact with the secure web server; all it requires to have a secure connection between the two is SSL Certificate, which can be easily downloaded from the internet by simply following the instructions and filling some details required.

Need for SSL Connection
In normal cases, data is transferred or shared in simple text form, which gives an advantage to hackers to misuse or modify it easily, which is a big security threat. To overcome this, SSL provides an encrypted link, which converts the data into a non-readable form, and then this encrypted data is transferred between the server and the browser through a secure link that nullifies the risk of data being hacked. To get this kind of security, all you need is the SSL Certificate.


How SSL Certificate Provides Security

SSL certificate has a pair of keys; one is a public key and another one is a private key. To establish a secure/encrypted connection, these keys work together. This certificate also contains the identity of the owner and in technical language, it is known as SUBJECT. CSR (Certificate Signing Request) must be created to get an SSL certificate, which in return creates a set of keys (public and private key). Then CSR data file that contains public key is sent to CA (Certificate Authority). This data file is used for creating a data structure to match private key but due to security reasons, CA can never see the private key.

Once the certificate is issued by CA, install it on your server. When the installation of SSL certificate is complete, this server certificate is connected with CAs certificate in order to establish reliability and credibility of SSL certificate. It is important to buy an SSL certificate from an authorized or trusted Certificate Authority (CA) because most of the browsers come with a pre-installed list of trusted CAs and will only acknowledge them. So the user can trust the site with Comodo SSL certificate and can feel free to share private and sensitive information required by that particular site

No comments:

Post a Comment