Not every user of computer systemsImagine how the connection to the Internet works. Sometimes, of course, when issuing a message stating that a secure SSL connection is established, some start to delve into the essence of the communication issue. However, here we should consider the specific questions: what is an SSL connection, an SSL certificate, why is it needed, how to get it, and how practical are such actions? Let's try to understand this question on the simplest examples and, so to speak, show on your fingers how this works.
What is the SSL connection technology?
Based on some official network requirementsInternet, you need to take a particularly scrupulous attitude to the security policy. In this sense, one of the key concepts is the SSL certificate. Why is it envisaged in use for some resources?
Yes, only then, to confirm the authenticitysome kind of resource (note, official), which is accessed. In other words, this is an electronic, unpublished document that guarantees the security of visiting a site on the World Wide Web.
SSL certificate: why do you need this document?
Speaking about the principles that are laid in technologyaccess based on a secure SSL connection, here is a comparison with access like HTTPS, which, in fact, is also protected (as evidenced by the letter "S".
If you look at the SSL certificate (why you need itsuch a document or how to use it for practical purposes), it should be noted that it, roughly speaking, confirms not only the security of the connection or content of the Internet resource in terms of published content, but also the applied encryption method of the data sent and received.
That is, when accessing which web pagethe user should not have problems with personal data (logins, passwords, PIN-codes, etc.), since this document certifies that the security system will protect him from any outside interference. As already understood, such user information is not transmitted to third parties. In this sense, it is considered that when installing a secure connection by the type of SSL, there are no additional security features like antivirus, firewall or Windows Defender, which appeared as one of the main components since the eighth version of the operating system.
Principles of interaction with users
Now let's see how this all works. It goes without saying that today high-tech software products called browsers are used to access the Internet.
At the time of the session when you tryopening a page, the browser does not immediately download text and multimedia data. First, he analyzes them or, so to speak, leads to a readable appearance. After that, the content is tested for potential threats. Do not think that browsers do not have their own means of protection. Often they are much superior to some antivirus programs. If everything goes well, then connect the antivirus.
But here's what's interesting:in this time interval, the authentication of the site and its publisher is initialized. This is where the SSL certificate comes into effect. Why this kind of confirmation is needed, probably, it is already clear. The browser receives a resource trustworthiness response and establishes a connection. Otherwise, it is blocked. Sometimes, however, it happens that the blockage works completely unreasonably, for example, because of a delay in the certificate, or because the system itself or an antivirus thinks that some page is potentially unsafe (this will be considered a little later).
Who issues SSL certificates?
To date, there are severalofficial organization engaged in the design of electronic documents and signatures of this type. In this case, we mean an SSL certificate. What is the need for such an electronic document is not difficult to understand, if we proceed from the principles of jurisprudence.
In fact, the certificate works in twodirections: confirms the safety of the use of the resource by the user at the entrance and imposes responsibility for the damage done to the user, if it is from this resource that the virus picked up. On the other hand, even the presence of a certificate can not guarantee that communication will be safe (it is enough to recall attacks on the servers of the world military departments or the same recent offshore scandal).
Today, the following are considered to be recognized official organizations that issue such documents:
- COMODO.
- TTHAWTE.
- GeoTrust.
- RapidSSL.
- Symantec et al.
It is noteworthy that this list containsSymantec Corporation, which is almost the first developer of security systems, when the same Kaspersky Lab and the project was not. Judging by the opinions of people who use such certificates, it is this company that provides the widest range of services.
What does the user receive when registering?
Now let's look at the advantages thatreceives the usual site owner. Let's imagine what a root SSL certificate is, and why you need it. As a rule, it is the main one in the list of provided support services, although in the main package of such certificates there are at least three:
- root;
- intermediate;
- certificate for individual domains.
Without going into the details of each technology,it can be noted only that when you receive a certificate of any level, the same site owner receives some unofficial advantages over competitors. First, the SSL certificate certifies the reliability of the resource, secondly, it guarantees secure encryption of the data; third, strangely enough, it raises the resource rating at the level of the search engines, which are known to initially search for the results of queries on trusted resources.
Where to use SSL certificates?You can immediately apply the legal aspect. Roughly speaking, the owner of the site, having received this certificate, disclaims any responsibility for the safety of the resource, since the organization that issued such an electronic document acts as a guarantor. Of course, checks are almost daily. And, of course, it is initially assumed that on a site certified for security, there will not be so-called pirated content or automatically triggered malicious codes that can harm the end user when entering the site or even when redirecting.
Problems with encrypted connection
So, why we need an SSL certificate, we sorted it out a bit. Now let's look at some problems, alas, which arise quite often when you install such an encrypted connection.
It is believed that failures can be observed in the case ofvirus infection, incorrect browser settings, blocking Internet access at the level of the firewall and antivirus, and also, which looks strange enough, due to the incorrect setting of the date and time on the system timer (not in Windows, but in the BIOS).
The simplest methods of remedying the situation
As follows from the foregoing, it is easy to deal with such situations. Disable the same firewall or change the date in the BIOS of labor is not.
Browsers are another matter.Each developer tries to put in them a maximum of functionality, which can often cause conflicts at the system level. In other words, add-ins and plug-ins installed by the user are not always recognized by the system adequately.
In some cases, both the system and the browser are trying toblock this or that component, considering it potentially unsafe. Unfortunately, it is here that there is no consistency. Therefore, it is recommended to check the availability of even its own resource exclusively on the built-in Windows browsers (either Internet Explorer or Edge).
Is it profitable to issue an SSL certificate?
Now let's move on to the question of expediencygetting what's called an SSL certificate. Why do I need such a document, I think, a little clear. However, the same site owners are more concerned with the cost of issuing such a document. As it turns out, this service is quite cheap. For example, the design of the basic package of Comodo PositiveSSL Certificate will cost on average 500-550 rubles, the rank above - about 4 thousand, the most responsible - about 8 thousand rubles.
In this case, it is worth considering the guarantees provided. So, for example, for certificates in the order of increase, the guarantee is 10, 50 and 100 thousand US dollars.
What in the end?
As for the conclusions, here every user,rather, the owner of the site or domain name, should make a decision on the appropriateness of acquiring such a document himself. If we talk about end users, they will not have problems accessing certified resources, except if the certificate is overdue. On the other hand, the dominance of search engines can also affect, because they first turn to secure sites with verified SSL certificates. So here, as they say, a double-edged sword.
