Digital Certificates - Why your business needs them10 May 2005
The rise of business over the Internet has meant security is more crucial than ever and digital certificates provide the answer.
Digital certificates, also known as a digital IDSM, are electronic files best thought of as a kind of online passport. They are tamper-proof files that cannot be forged. Information in the certificate can be trusted because it is digitally "signed" by a trusted certificate issuing authority, known as a Certification Authority (CA), who checks the authenticity of the information to be included in the certificate before it is issued.
They are used for two reasons. The first is to authenticate that their holders - people, web sites, and network resources such as routers - are truly who or what they claim to be. The second is they protect data exchanged online from theft or altering.
Server certificates
Server certificates are digital files that let visitors to your web site exchange personal information, such as credit card numbers and addresses and order details, free from the threat of interception or tampering. This means that not only can you check the authenticity of your website allowing them to exchange data reassured that you are who you say you are.
Personal certificates
Personal certificates let you authenticate a visitor's identity and restrict access to specified content to particular visitors. You can also use personal certificates to send secure email for private account information. Personal certificates are used by businesses to allow suppliers and partners to have controlled access to special web sites for updating product availability, shipping dates, and inventory management.
Why does your business need them?
No matter what size your business may be, digital certificates are crucial if you wish to use the Internet to trade or transfer information. Encryption of information alone is not enough, as it provides no proof of the identity of the sender of the encrypted information.
Digital certificates solve this problem by providing an electronic means of verifying someone's identity.
Further to the security and peace of mind offered by digital certificates they can also save time and increase efficiency. Customers and suppliers can securely access information and change certain variable if necessary 24 hours day.
Setting up a Digital Certificate
The first step in setting up a digital certificate scheme is selecting which method and system is most suited to your circumstances. To help you decide Verisign offers a simple to use questionnaire.
You then need to generate a CSR (Certificate Signing Request). This is a string of text generated by your server software. To generate a CSR, you will need to know what kind of server software is running on your Web server.
When you have obtained your CSR and the exact domain name of the site you intend to secure you have the information needed to 'enroll' with a Certificate Authority. The CA then verifies the information before sending installation instructions.
The only thing left to do then is backup your certificate to avoid a replacement fee.
More information on digital certificates and how to set them up is available from BT.
