Shulou(Shulou.com)06/01 Report--

How to Apply for SSL Certificates to Protect Network Information Security

In the field of Internet security, SSL Certificates occupy an increasingly important position. Because whether it is a personal, corporate or government organization, various websites store a lot of important data, such as payment information that provides payment functions, email account password information, and so on. This information is very important information for both enterprises and individuals. In order to ensure that the information entered by users is not stolen, leaked or changed, it is necessary for the website to apply for installation of an SSL Certificates at this time. It can effectively protect the security of user input information and prevent it from being peeped at by third parties. So how do enterprises apply for SSL Certificates?

Three Steps to SSL Certificates Application

First, we need to create a CSR file.

CSR is the Certificate Secure Request file. This file is created by the applicant. At the same time, the system will generate two keys, one is the public key, which is the CSR file, and the other is the private key, which is stored on the server. To create CSR files, applicants can refer to WEB SERVER documentation, general APACHE, etc., use OPENSSL command line to generate KEY+CSR2 files, Tomcat, JBoss, Resin, etc. use KEYTOOL to generate JKS and CSR files, IIS through the wizard to create a pending request and a CSR file.

2. Second, do a good job of CA certification

CSR will be submitted to CA, CA generally has two authentication methods: 1, domain name authentication, generally through the administrator mailbox authentication method, this way authentication speed is fast, but the certificate issued does not have the name of the enterprise;2, enterprise document authentication, need to provide the business license of the enterprise. It usually takes 3-5 working days. There are also certificates that need to be authenticated in the above two ways at the same time, called EV certificates. This certificate can make the browser address bar above IE7 turn green, so the authentication is also the strictest.

3. Installation of certificates

After receiving the CA certificate, you can deploy the certificate to the server. Generally, the APACHE file directly copies KEY+CER to the file, and then modifies the HTTPD.CONF file. For TOMCAT, you need to import the certificate CER file issued by CA into the JKS file, copy it to the server, and then modify SERVER.XML. IIS needs to process the pending request and import the CER file.

The above three steps are the application and installation of SSL Certificates, which is a security issue that both mall websites and third-party payment platforms need to consider for users.

Global Trusted CA Authority

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.