Home
networking

SSL Certificate | Types | Working

What is SSL?

SSL: Secure Socket Layer

It is most widely used cryptographic protocol to supply security over internet communication. A secure channel is provided by it, and it turns website’s address from ‘http’ to ‘https’ where S stand for secure.

What is SSL Certificate?

A digital certificate that authenticates a website’s identity and enable secure connection by creating a secure link between web server and web bowser.

How it functions?

-         Basically, it is a data file which encrypt data packets when it travels through internet. It pre-empts the data to be review and modify while transportation.

-         It works on TCP protocol and use SSL handshake process to build secure connection.

-     There are two types of SSL handshake known as one-way SSL and two-way SSL (mutual SSL). The difference between the two is that with an SSL, only the client validates the identity of the server, while with a two-way SSL, both the server and the client validate the identity of the other. Typically, one-way SSL is used when browsing an HTTPS website, in which only our browser (client) verifies the identity of the website (server). Two way SSL is primarily used in server-to-server communications where both parties need to verify the identity of the other.

-         It works as:

  1. A browser/server attempts to connect with a website secured with SSL.
  2. Browser/Server requests that the web server identifies itself.
  3. The web server sends back the copy of SSL certificate.
  4. The browser or server checks the SSL certificate and If it is trusted then, it send signals back to the webserver.
  5. The web server then returns a digitally signed acknowledgment to start an SSL encrypted session
  6. Encrypted data is shared between the browser or server and the webserver.

Where can I see SSL certificate for any website?

-         You can see one padlock symbol located next to your browser bar. By clicking on it you can see SSL certificate.

Which information is contain in SSL Certificate ?

  1. The domain name that the certificate was issued for
  2. Which person, organization, or device it was issued to
  3. Which Certificate Authority issued it
  4. The Certificate Authority's digital signature
  5. Associated subdomains
  6. Issue date of the certificate
  7. The expiry date of the certificate

Types of SSL Certificate:

SSL certificate's types is differentiated based on ‘no of domain are going to use it’ and ‘ level of validation’.

Types according to level of validation:

  • Domain validation (DV):

    1. Least expensive
    2. Cover basic encryption and verification
    3. Take around few minutes to serval hours to receive it.

  • Organization Validation:

    1. Take around few hours to serval days to receive it.
    2. Cover basic encryption and validation of ownership of the domain name registration as well as also cover certain authenticated details of owner ( name, address...)

  • Extended Validation (EV) :

    1. Provide highest degree of security
    2. Takes few days to serval weeks to receive it.
    3. In addition to ownership of the domain name registration and entity authentication, the legal, physical and operational existence of the entity is verified.

-                                 

Post a Comment