go back to rebel.ca

Rebel Help Centre

Articles in this section

See more

What is SSL, what is it used for and what do you need?

Avatar
Angelina
Updated
Follow

Topics covered in this article are: 

What is SSL?

What are SSLs used for? 

What is needed for an SSL?

Tip: Free SSL certificates come with our Web Hosting and Managed WordPress hosting packages 

Learn how to install our free SSL on your hosting package with Rebel here: How to install LetsEncrypt SSL in Plesk

 

What is SSL (Secure Sockets Layer)?

SSL Certificates are small data files that digitally bind a cryptographic key to an organization's details. When installed on a web server, it activates the padlock and the HTTPS protocol (over port 443) and allows secure connections from a web server to a browser. Typically, SSL is used to secure credit card transactions, data transfer and logins, and more recently is becoming the norm when securing browsing of social media sites.

SSL Certificates bind together:

  • A domain name, server name or hostname.
  • An organizational identity (i.e. company name) and location.

An organization needs to install the SSL Certificate on its web server to initiate secure sessions with browsers. Depending on the type of SSL Certificate applied for, the organization will need to go through differing levels of vetting. Once installed, it is possible to connect to the website over https://www.domain.com, as this tells the server to establish a secure connection with the browser. Once a secure connection is established, all web traffic between the web server and the web browser will be secure.

Whenever a browser connects to a web server (website) using SSL, the communication will be encrypted and secure. This is usually indicated by the appearance of a key in the lower portion of your web browser. In order to get an SSL for your website, you first need an SSL Certificate. Your SSL Certificate is installed on your web server and allows you to access the security functionality of your web server, and ultimately lets your customers know that your site is secure. SSL (Secure Sockets Layer) is a security technology that is commonly used to secure server-to-browser transactions. This generally includes the securing of any information passed by a browser (such as a customer's credit card number or password) to a web server (such as an online store or online banking application). SSL protects data submitted over the Internet from being intercepted and viewed by unintended recipients.

 

SSLs are used to: 

  • Secure online credit card transactions;
  • Secure system logins and any sensitive information exchanged online;
  • Secure webmail and applications like Outlook Web Access, Exchange and Office Communications Server;
  • Secure workflow and virtualization applications like Citrix Delivery Platforms or cloud-based computing platforms;
  • Secure the connection between an email client such as Microsoft Outlook and an email server such as Microsoft Exchange.
  • Secure the transfer of files over HTTPS and FTP(s) services, such as website owners updating new pages to their websites or transferring large files;
  • Secure hosting control panel logins and activity like Parallels, cPanel, and others;
  • Secure intranet-based traffic such as internal networks, file sharing, extranets, and database connections;
  • Secure network logins and other network traffic with SSL VPNs such as VPN Access Servers or applications like the Citrix Access Gateway.

All these applications have several shared themes:

  • The data being transmitted over the Internet or network needs confidentiality. In other words, people do not want their credit card numbers, account login, passwords, or personal information to be exposed over the Internet.
  • The data needs to remain integral, which means that once credit card details and the amount to be charged to the credit card have been sent, a hacker sitting in the middle cannot change the amount to be charged or where the funds should go.
  • Your organization needs identity assurance to authenticate itself to customers/extranet users and ensure them they are dealing with the right organization.
  • Your organization needs to comply with regional, national or international regulations on data privacy, security and integrity. 

 

What is needed for SSLs

To integrate an SSL certificate, you’ll need:

  • A registered domain and an active hosting service connected to that domain.

  • A Certificate Signing Request (CSR): generated by your hosting provider. This is required by the SSL provider (certificate authority) to create your certificate.

  • Installation of the SSL certificate:

    • In most cases, you can install it through your hosting provider’s control panel or management tools.

    • On advanced or custom servers, the CSR may need to be generated manually, and the certificate installed directly on the server.

Comments

0 comments

Please sign in to leave a comment.