Embed Size (px)
Citation preview
SSL - One Of The Best PracticesHelp Your Website, Help Yourself – Gain Customer
Trust
• In today's date Internet is becoming one of the daily part of our life. Due to this, sharing of data is becoming easier. Old methods like sharing data through CD-ROM are non-existent, as Internet offers the same facility by just few clicks.
• Websites are filled with data which can be accessed within few minutes.
• Though sharing over Internet is easy now-a-days, but responsibility of keeping it safe from cyber attacks, malware or any virus is also important.
• In today's date cyber-attacks is not a new thing. Anyone can imagine, what could happen due to one bad click or visiting any malicious website.
• It's very important to know whether a malicious person has not created a backdoor, or performed any other number of possible malicious activities.
Some of the General Problems Everyone Face Are Like
Nearly 77.9% Websites are Still on HTTP despite of Google's Warning.
5.2% Have an Incomplete Chain
19.2% Support Weak/Insecure Cipher Suites
Only 42.3% Support SSL 3.0
83.1% Still Vulnerable to BEAST Attack
5.5% Vulnerable to CRIME Attack
36.7% Do Not Support Forward Secrecy
Looking at Today’s Scenario – You Should Take Responsibility
Proper Server Implementation should not be taken Lightly.
Should look for Reputed CA (Certificate Authority) Not like DigiNotar - Whose Security Breach Resulted in the Fraudulent Issuing of Certificates Offers all the Defense which are the basic Requirements of today's Evolving CAs Registered with all the Guidelines of CA/Browser Forum.
Follows Proper Implementation Protocols like Offering Bug Free Deployment Responsibility of Server Browser Vendors Capable of Fighting off Serious Vulnerability like Heartbleed Bug
Looking at Today’s Scenario – You Should Take Responsibility
Proper Server Implementation should not be taken Lightly.
Shielded with SSL/TLS Protocol
Follows IETF (Internet Engineering Task Force) StandardsHave Evolving StandardsOffer protection from serious threats like POODLE (Padding Oracle On
Downgraded Legacy Encryption) a Man-In-The-Middle Exploit
History of SSL/TLS Certificate
SSL (Secure Sockets Layer), was originally developed by Netscape Communications
First version of SSL has never been released due to some issues. In 1994, again another version was created by Netscape named as SSLv2 In 1995 Netscape moved further, and for strengthening security, released
version called SSLv3 In 1996 TLS v1.0 got released Later on in 2006, TLS v1.1 got released to overcome the problem of TLS v1.0 In 2008 TLS v1.2 got released, with new feature that removes the need for
streaming and block ciphers TLS 1.2 does not had any problem but it was clear that in future it will not be
able to support the evolution of Internet. So, next generation encryption protocol been introduced in 2013 by releasing TLS 1.3
Free SSL/TLS Tools To Choose From
SSL Checker - Verify the Type of SSL/TLS Certificate InstalledCSR Decoder - Decode the Certificate Signing RequestCertificate Decoder - Verify your SSL/TLS Certificate is CorrectCertificate Key Matcher - Match the Private Key Pairs with Your Installed
SSL/TLS CertificateSSL Converter - Simply Convert the Format of SSL/TLS Certificate, so
Your Server Accept it.Generate CSR - Easily Generate Your CSR & Private KeyWhy No PadLock? - Check if Any URL is not Secured with SSL/TLS
Certificate
This video will let you know why SSL/TLS Certificate is Compulsory to Have
The SSL Store™, offers the exact same products as you would from buying direct, but at much lower prices. We're platinum partners with Symantec and we buy SSL in extremely large quantities at deeply discounted rates, so we're able to pass those savings directly to our customers. Also, we don't consider ourselves just an SSL provider, but rather a Premium SSL Service. That's because we have a team of more than 45 SSL experts standing by ready to support your order. You can always reach our SSL specialists via email, live chat, and telephone.
