WHAT IS SSL? AND HOW TO INSTALL SSL ?? Get a Free SSL Certificate?

An SSL Certificate is a text file with encrypted data that you install on your server so that you can secure/encrypt sensitive communications between your site and your customers. With an SSL certificate, your website can leverage the HTTPS protocol to securely transfer information between points A and B. This is crucial when transferring sensitive information, like credit card data on checkout pages and Personally Identifiable Information (PII) on login and contact forms.

With an SSL certificate, your website can leverage the HTTPS protocol to securely transfer information between points A and B. This is crucial when transferring sensitive information, like credit card data on checkout pages and Personally Identifiable Information (PII) on login and contact forms.

Why we need SSL?

I know you have a question Why we need SSL?let me tell you a fact about the Internet Internet Nothing is secure. This look donating to you but this is real if you don’t use SSL your website look like insecure let have to look at this image

The chrome browser will tell you that this website is not secure. so your audience now that your website is not secure. if you running any kind of business then the customer not provide thery details like card number and another kind of detail. On the other hand, if your website is secure look at this picture

so as you can see difference between using SSL and not using SSL

WHAT IS HTTPS?

HyperText Transfer Protocol Secure is an advanced and secure version of the HTTP protocol. Whenever you try to open a webpage like google.com or youtube.com, you make a request to a server. This request transmission happens over the HTTP protocol. This request when leaves your browser and reaches the server can be intercepted as it is traveling in clear text format. In the early days, data was not that sensitive and hacking was not much advanced, this HTTP was Ok to have. But in the present world HTTP needs an upgrade and the result is https. This additional S in https is secure. Whole story short, it is used to encrypt communication between end-user and server.

HTTP Request / Response

Communication between clients and servers is done by requests and responses:

  1. A client (a browser) sends an HTTP request to the web
  2. A web server receives the request
  3. The server runs an application to process the request
  4. The server returns an HTTP response (output) to the browser
  5. The client (the browser) receives the response

HOW DOES HTTPS WORK?

HTTPS is a secure form of the HTTP protocol. It wraps an encrypted layer around HTTP, Transport Layer Security (TLS). Clients and servers communicate using HTTP it is now secure because of the TLS wrapper.

All https websites use either of 2 protocols to encrypt communication between user and server, SSL aka Secure Socket Layer or TLS aka Transport layer Security. Both of this SSL and TLS use an asymmetric public key Infrastructure system. Yes, I am aware that some readers don’t know about PKI (public key infrastructure). Basically, 2 keys are used, the public key and private key. Anything encrypted with a public key can only be decrypted with a private key and vice versa.

Why is SSL important?

SSL means a secure socket layer. But that protocol has been deprecated and replaced by Transport Layer Security (TLS). Because so many got used to using the SSL acronym we still use it, the two are interchangeable today, but the actual encryption is TLS, not SSL today.

In the past SSL certificates were expensive. That has changed today as most certificates are free. If you pay for a certificate you are buying a certificate with a more rigorous screening process and possibly insurance.

Types of SSL Certificates

Some visitors recognize the additional authenticity and trust offered by Extended Validation (EV) and Organization Validated (OV) certificates due to their rigorous validation process.

There are three types of certificates to be familiar with:

  • Domain Validated (DV)DV certificates only need the Certificate Authority to verify that the user requesting the certificate owns and administers the domain. Visitors will see a lock icon in their address bar, but no specific information about the owner.
  • Organization Validated (OV)OV certificates require a Certificate Authority to confirm the business making the request is registered and legitimate. When visitors click the green lock icon in their browser, the business name is listed.
  • Extended Validation (EV)EV certificates require even more documentation for the Certificate Authority to validate the organization. Visitors will see the name of the business inside the address bar (in addition to clicking the lock icon).

What You Need to Get a Free SSL Certificate

The following guide works best if you have a dedicated IP for your site (through a VPS or dedicated server). If you’re on a shared host, talk to your host about deploying Let’s Encrypt; a number of hosts have automated the process of deploying a Free SSL for shared hosting accounts. It is possible to use Server Name Indication (SNI) with one server IP address and generate certificates for all sites on the server.

The rest of this guide will assume you have full access and control of your web server.

You will need the following information about your server:

  • IP address
  • Server username (with admin or sudo privileges)
  • User password (or preferably SSH key authentication)
  • Software (i.e. Apache, Nginx, IIS)
  • Operating system and version number (i.e. Debian 7, Ubuntu 16.04, etc.)

Generate Certificate

Now that you have all the required information, you can connect to your server and install a tool that will generate an SSL certificate.

From your computer, you need a way to log into your server and send SSH commands. If you are on a Mac, you can use Terminal (built-in application) and Windows can download PuTTY. Some hosts also offer a web interface for running commands on your server.

Steps to Follow

Now that you have all the required information, you can connect to your server and install a tool that will generate an SSL certificate.

Here is a quick overview of how you can get a free SSL certificate from Let’s Encrypt using the Certbot tool.

Overview of steps to use Certbot:

  1. Connect to your server over SSH using the IP address, username, and password.
  2. Visit the Certbot website and choose your server operating system and software.
  3. Follow the instructions given for your server to do the next steps.
  4. Run any commands listed to Install dependencies.
  5. Run the commands listed to install Certbot.
  6. Run the commands listed to Get Started and generate the certificate.
  7. Provide an email address when prompted.
  8. Agree to the Terms when prompted.
  9. Run the commands listed to test renewals under Automating Renewal.
  10. Set up a cron or systemd job on your server to automate the renewal process

Now you know how to set up a free SSL so go ahead and download free SSL and secure your website

One Response

  1. Manu November 25, 2019

Leave a Reply