How authentication helps secure and improve e-commerce / e-business
SSL ensures safe transactions:
To make sure that no hacker can intercept and misuse information being collected online, SSL does two things:
- Encrypts it with a hidden key on the user’s computer before the information is sent out;
- Sends the key to the receiving computer using another encryption system called RSA. With this key the information collected online can be decoded.
- A 128-bit public encryption key and a 1024-bit private RSA key are unbreakable today. They are also part of most web browsers and web servers.
The SSL Process:
Each SSL Session ensures:
- Authenticity
- Data Integrity
- Data Privacy
How SSL Works:
- Provides visible authentication:
Before an SSL session is established, the server it connects with needs to have a digital certificate – a kind of unique digital identification to establish its authenticity. Digital certificates are issued by a Certification Authority, after performing several checks to confirm the identity of the organization to which it is issuing the certificate.
An SSL digital certificate generates a public key for your customers and a private key on your server that works as a kind of official, online stamp for your enterprise. This private key needs to be kept secure, along with a back-up. A user can check to see if a secure session has been established by looking at the web address: in a secure session, the ‘http:’ portion of the web address changes to ‘https:’.
- Assures data integrity:
This basically ensures that nobody can tamper with the data or information that is already online. Your customers will know that the contents of your website – or any information they have transmitted to it online – cannot be tampered with. It assures them that they are doing business in a safe environment.
- Ensures data privacy:
This means that online collection of sensitive information is secure and cannot be intercepted or read by anyone except the computer it was intended for.
Data integrity and data privacy are integral to the functioning and success of any website handling or facilitating online financial transactions – and that’s what e-commerce is all about.
Once a secure session has been established, the public key is used by customers, to encrypt the information being sent online. This information is then decoded instantaneously through your server’s private key.
No comments:
Post a Comment