How Digital Certificates (SSL) Work

by Dave O`Brien.
Share
|
Homepage | Submit your article | Contact | TOS
More articles on web services  

You are here: Categories » Internet » Web services

In physical transactions, the challenges of identification, authentication, and privacy are solved with physical marks, such as seals or signatures. In electronic transactions, the equivalent of a seal must be coded into the information itself. By checking that the electronic “seal” is present and has not been broken, the recipient can confirm the identity of the message sender and ensure that the message content was not altered in transit. To create an electronic equivalent of physical security, some vendors use advanced cryptography.

Throughout history, most private messages were kept secret with single key cryptography. Single key cryptography is the way that most secret messages have been sent over the centuries. In single key cryptography, there is a unique code (or key) for both encrypting and decrypting messages. Single key cryptography works as follows:

Suppose Bob has one secret key. If Alice wants to send Bob a secret message:

  1. Bob sends Alice a copy of his secret key.

  2. Alice encrypts a message with Bob’s secret key.

  3. Bob decrypts the message with his secret key.

Unfortunately, this method has several problems. First, Bob must find a secure method of getting his secret key to Alice. If the secret key is intercepted, all of Bob’s communications are compromised. Second, Bob needs to trust Alice. If Alice is a double agent, she may give Bob’s secret key to his enemies. Or, she may read Bob’s other private messages or even imitate Bob. Finally, if you have an organization with people who need to exchange secret messages, you will either need to have thousands (if not millions) of secret keys, or you will need to rely on a smaller number of keys, which opens the door to compromise.

SSL certificate technology employs the more advanced public key cryptography, which does not involve the sharing of secret keys. Rather than using the same key to both encrypt and decrypt data, an SSL certificate uses a matched pair of keys that uniquely complement each other. When a message is encrypted by one key, only the other key can decrypt it.

When a key pair is generated for your business, your “private key” is installed on your server; nobody else has access to it. Your matching “public key,” in contrast, is freely distributed as part of your SSL certificate. You can share it with anyone, and even publish it in directories. Customers or correspondents who want to communicate with you privately can use the public key in your SSL certificate to encrypt information before sending it to you. Only you can decrypt the information, because only you have your private key.

Your SSL certificate contains your name and identifying information, your public key, and the CA’s own digital signature as certification. It tells customers and correspondents that your public key belongs to you.

Share
Leave a comment or ask a question
Total comments: 0

Web services Disclaimer

  • The e-articles directory is not responsible for any and all copyright infringements by writers and authors. If you suspect the information contained by this page for any copyright infringements, please contact us to investigate the issue
SQL Server Hosting :: MSSQL Vs MySQL - I know it is hard to decide between SQL Server Hosting and MySQL hosting. Which is better? Which is more reliable? Which offers more features? These are just a few questions when it comes to SQL Se (more...)
Windows Hosting :: An overview - Are you wondering why Windows hosting is better than Linux hosting? If you ask 10 people what they think, 5 will say that Windows hosting is the best, while the other 5 will say that Linux hosting (more...)
ASP Hosting :: Why Do People Still Use Classic ASP - Did you notice that many people are still using ASP? This is somewhat strange due to the popularity of.NET. Why are they still using the classic instead of the new and powerful ASP.NET? First of al (more...)
Windows Reseller Hosting :: Competition Point of View - Did you ever wonder what reseller hosting really is? It is basically a form of web hosting in which the owner of the account is using his or her bandwidth and hard disk space to host third party we (more...)
ASP.NET 4.0 Hosting :: The New ASP Net Technology Improvements - ASP.NET 4 brings a lot of new possibilities over its predecessor, ASP.NET 3. One of the best additions is support for meta keywords and meta description. These are very important parts of a website (more...)
How to get paid to write answers online - There are many Q&A websites out there such as Yahoo Questions, Answers.com and Blurtit.com. The basis of these websites is simple, a user goes to one of these sites, types a question and lets o (more...)
What is Hosting and Types of Hosting - Hosting is one of those core Internet concept that starts out easy and gets insanely confusing as you delve into it.Every website is 'hosted' somewhere.In other words, the 'hosting' entity runs a m (more...)
Social Networking Development can Enhance your Business - We have all heard about social networking websites but there are only a few who really knows what it means. Social networking can be defined as a grouping by some individuals together into specifi (more...)
Do You Really Need Dedicated Server Hosting (q) - If you own a business, you are always thinking of expanding it to increase your revenue. Various business proprietors are looking to expand their business online to grow their market. You may requi (more...)
Guide for a good dedicated hosting - You might have heard of servers that are dedicated for each website but you might not know what they are. If you ant to know more things about that, then you should know more things about the dedic (more...)
 
free content
    Copyright © 2006 - 2012 e-articles.info.
The texts, articles and tutorials in the directory are property of their respective owners and authors.