SSL stands for Secure Socket Layer. This is a small file on your site, known as a ‘cryptographic protocol’, that encrypts any data sent from your visitor's browser to your web server so that only those for whom it’s intended can read and process it.
It does this by scrambling the ordinary ‘plaintext’ into ‘ciphertext’ for transmission, so that if the data is intercepted by an unauthorised user, it will appear unintelligible.
The keys for this encryption are generated uniquely for each interaction, before any data is transferred, and the data cannot be seen or modified by an attacker without being detected.
Difference between SSL and TLS
TLS (Transport Layer Security) and SSL are very similar and can be referred to as the same thing.
Both SSL and TLS are used to authenticate the transfer of data between servers, systems, users, and applications, however there are a few minor technical differences.
TLS is actually the name of a newer version of SSL, but it’s more well-known as the name of its predecessor, SSL.
Why is SSL important?
Without SSL, data on the web is usually sent in clear text from computer to computer until it reaches its destination.
Any computer that passes on the data can see that information, so a third party could ‘listen in’ to communications and extract sensitive information.
This could include sensitive data such as passwords, billing information, or any other data collected on your website.
What are the benefits of SSL?
- Link encrypts data, preventing third parties easily seeing or stealing communications
- Prefixes the site address with “https”, a protocol that confirms secure communication
- Visitors can click on the padlock icon to get more information about the website owner
- Google gives a small search engine rankings boost to sites using SSL
HTTPS encryption on a website cannot happen without a SSL certificate. The certificate is made up of the website’s individual key and issued domain name.
The SSL certificate prevents security attacks that try to duplicate the look of a website to trick unsuspecting users.
There are three types of SSL certificates:
Single Domain - can only authenticate one domain
Wildcard - used for a domain and its subdomains
Multi-Domain - several domains covered by one certificate
At Circle, we take security, confidentiality and data protection seriously. Find out what we can do to keep your website secure.