Customer Support | Generating Certificate Signing Requests
Page 1
Introduction
SSL secures all website traffic between two points, ensuring that any data shared
between your customers and your webserver is safe and secure.
It achieves this in two ways:
1 It encrypts the data between the two computers, preventing anyone from
eavesdropping on your communications.
2 It confirms the identity of the website you are communicating with.
The transfer of data is achieved using public key encryption. This involves
generating two very large prime numbers. The first is used as your private
key and should be kept secret from everyone. The other forms your public
key, and is available to everyone to view.
With this information it is possible to create a “self signed” SSL certificate
that encrypts data between two end points. However the end user cannot
be sure that you are who you say you are. As such their web browser will
provide warnings to anyone attempting to view your site over SSL.
To avoid these errors, you need to prove the identity of your website. This
is achieved by enrolling for a digitally signed certificate from a trusted
authority.
Your computer inherently “trusts” a number of companies (called Certificate
authorities). By creating a public and private key, you can ask a trusted
certificate authority to digitally sign your certificate. As your computer trusts
the Certificate authority, it will also trust the identity of anyone who has their
identity confirmed by having their certificate signed by such an authority.