Facebook security ssl
Facebook security ssl - Getting a more secure web is made easier with
the help of SSL Secured Website. You may be wandering what SSL is? Well,
SSL is a short for Secure Socket Layer. This is a protocol defined for
private documents over the web. The main concept is that the SSL Secured
Website uses a cryptographic system. The system normally deals with the
two keys- one that is public and known to everyone while on the other
hand there is a private key that is only known to the recipient of the
message.
You might have noticed some websites have the address starting with
https. These are the sites that require SSL for data transfer. In fact
it is a convention to make the addresses of SSL Secured Websites start
with https. Normally the sites used for online payment or transaction
are secured via this protocol or you may have seen it for some email
sites too.
Let's have a brief look at how the HTTPS works for you. A secure channel
is to be created on an insecure network. For that adequate cipher
suites are used and server certificates are made verified and trusted.
Generally the browser already has the pre-installed certificate
authorities. This certificate actually tells you to whether trust a sit
or not. Some browsers may provide you a plug-in for this purpose. If
some SSL secured Website is visited and the certificate has not already
been added to the browser software, you will be prompted with a warning
and you will have to confirm the risk of viewing the site or else way.
Now, what actually happens when a web browser connects to a SSL Secured
Website? The first step is that the browser attempts to connect to the
website. The browser basically requests the web server to identify it
self. The web server then sends a copy of its SSL certificate to the web
browser. The next step is the verification of the certificate. The
browser checks that whether the SSL certificate sent by the web server
is trusted or not. If the certificate gets verified, it sends a message
to the web server. But if it fails, the browser generates a warning and
asks the user to verify or deny the authenticity of the server's
certificate. If the user accepts the risk, the message is sent to the
server if not the connection is closed and you can't access the website.
In the former case, the server sends back the acknowledgment to start
an SSL encrypted session.
