What is an SSL (Secure Sockets Layer) Certificate
Extended Validated Website : https://www.symantec.com
Why do we need SSL (Secure Socket Layer) on websites
How does SSL Certificate creates a Secure Connection -
1. Browser connects to a web server secured with SSL (https) eg https://www.cybersecuritydelhi.com
2. Browser sends request to the web server to identify itself.
3. Web server sends a copy of its SSL Certificate along with the web server's public key.
4. Browser checks the certificate's root against a list of trusted CAs and checks that SSL is not expired and its common name is valid for the website that it is connecting to. If browser trusts the certificate then it creates, encrypts and sends back a symmetric key session using the web server's public key.
5. Web Server decrypts the symmetric session key using its private key an sends back an acknowledgement encrypted with the session key to start the encrypted session.
6. Web server and Browsers encrypts transmitted data with the session key.
7. Encrypted data is shared between the browser and the web server and "https" appears in the URL bar.
Benefits of Encryption by SSL-Encryption Protects Data During Transmission
Credentials Establish Identity Online
To view website's credentials, please follow following steps:-
1. Click on the padlock visible in the browser.
2. Clcik on the trust mark such as Digicert or Norton Secured Seal etc).
3. Look the green address bar, green color appears in case of Extended Validation(EV).