SSL (Secure Sockets Layer) is a protocol developed by Netscape for ensuring secure transactions between web browsers and web servers. Many websites use the protocol to obtain confidential user information, such as credit card numbers. By convention, URLs that require an SSL connection start with "https" instead of "http".
Getting an SSL Certificate
University Information Technology offers both Standard and Extended Validation SSL certificates from VeriSign for purchase by the University community. To purchase the VeriSign certificate software, contact UIT at ext. 3-1411, or firstname.lastname@example.org. If you have any questions, email Ric Rodriguez or Brian Walker, UH VeriSign account administrators, at SSL@uh.edu.
- What pages should I secure using SSL?
- The webpages you want to secure are generally those that require the entry of sensitive information, such as passwords, personal information, credit card numbers and other financial information, although some may want to secure an entire set of pages using SSL certificates.
- Is there any alternative to SSL?
- Secure HTTP is another protocol for transmitting data securely over the World Wide Web. SSL creates a secure connection between a client and a server, over which any amount of data can be sent securely. S-HTTP is designed to transmit individual messages securely.
- Both protocols have been approved by the Internet Engineering Task Force (IETF) as a standard.