Recent studies have shown the importance of Secure Sockets Layer (SSL) is still widely underestimated by the general public when browsing the internet. While the study by Tyler Reguly, senior security engineer for nCircle, shows 83% of users check for SSL before entering their credit card information, only 41% do so when typing in passwords.

“It’s scary that people care so little about their passwords than they do about their credit card numbers,” says Ruguly.

“You see surveys saying that anywhere from 30 to 60 percent of users are using the same password everywhere, so they’re probably using it for online banking, too.

“The biggest issue is the general population doesn’t know what SSL is, why they’re using it, and it’s ingrained in them that it always makes them secure, which is not always the case,” he adds.

So just what exactly is SSL? By definition, Secure Sockets Layer is cryptographic protocols which provide secure communications on the Internet.

In plain english this means SSL is the standard security technology for establishing an encrypted link between a web server and a browser. This link ensures that all data passed between the web server and browsers remain private and integral.

SSL is an industry standard and is used by millions of websites in the protection of their online transactions with their customers.

To be able to create an SSL connection a web server requires an SSL Certificate. When you choose to activate SSL on your web server you will be prompted to complete a number of questions about the identity of your website and your company. Your web server then creates two cryptographic keys – a Private Key and a Public Key.

The Public Key does not need to be secret and is placed into a Certificate Signing Request (CSR) – a data file also containing your details. You should then submit the CSR. During the SSL Certificate application process, the Certification Authority will validate your details and issue an SSL Certificate containing your details and allowing you to use SSL. Your web server will match your issued SSL Certificate to your Private Key. Your web server will then be able to establish an encrypted link between the website and your customer’s web browser.

References: info.ssl.com