basic concepts

SSL certificate : SSL certificate is a digital certificate one, similar to the electronic copy of a driver's license, passport and business license. Because the configuration on the server, also known as SSL server certificate.

SSL certificates that comply with the SSL protocol, digital certificate authority CA trusted certificate, issued after verifying the identity of the server with server authentication and data encryption.

SSL certificates on the client browser and the Web server to establish a secure channel SSL (Secure socket layer (SSL) security protocol designed by Netscape Communication Company developed between the security protocol mainly used to provide authentication of users and servers; For data transfer is encrypted and hidden; to ensure that data is not altered in transit, that the integrity of the data, has become a standard in the field of globalization due to SSL technology has been established in all major browsers and. the WEB server program Therefore, only install a server certificate can activate this feature a), i.e. it can be activated by the SSL protocol, encryption of data transmission of information between the client and the server can prevent the leakage of data information, both to ensure the transmission of information are security, and the user can verify that he visited the site of the server certificate is authentic. Digital information file digital signature, also known as digital identity, signature (ie Digital Certificate, Digital ID), provides a method for authentication on the Internet is used to sign and certify the identity of both the communications network, similar in concept to everyday life driver's license or ID card. Digital signature is mainly used to send secure e-mail, access to a secure site, online bidding and tendering, online contract, online ordering, online documents safe transfer, online office, online payment, online shopping and online tax secure online electronic transactions.

HTTPS protocol : HTTPS (full name: Hyper Text Transfer Protocol over Secure Socket Layer), is safe for the target HTTP channel, simply, is a safe version of HTTP. I.e. HTTP added SSL layer, SSL security infrastructure is HTTPS, thus requires detailed encrypted SSL. It is a URI scheme (abstract identifier system), syntax similar to http: System. HTTP data for secure transmission. https: URL indicates that it uses the HTTP, HTTPS but there is a default different from the HTTP port and an encryption / authentication layer (between the HTTP and TCP). The system originally developed by Netscape (Netscape), and its built-in browser Netscape Navigator, provides authentication and encryption communication method. It is now widely used in the World Wide Web on security-sensitive communications, such as transaction payments.

The difference between HTTP and HTTPS : HTTP protocol to transmit data is unencrypted, clear text that is, so using HTTP protocol to transmit private information very unsafe, in order to ensure the privacy of data can be encrypted transmission, so Netscape designed the SSL ( Secure Sockets Layer) protocol for data transmitted over HTTP are encrypted, and thus was born HTTPS. In simple terms, HTTPS protocol is constructed from SSL + HTTP protocol can be encrypted transmission, network authentication protocol than http protocol security.