SSL protects online transactions — it protects YOU!

SSL or Secure Sockets Layer is a security protocol created by Netscape that has become an international standard on the Internet for exchanging sensitive information between a website and the computer communicating with it, referred to as the client.

The Secure Socket Layer, commonly known as SSL, represents the standard security technology used in online data encrypting. The SSL functions as an encrypting program for all communication between the server and the client's web browser. Therefore, all information transmitted online, including credit card numbers is encrypted, helping people operate secure online transactions. The SSL working mechanism also includes authenticating both the website's and the server's identity. In order for someone to use an SSL for their domain they need to obtain an SSL certificate. An SSL wildcard certificate is an even better alternative as it secures the website and all of its sub domains.

What are "Phishing" and "Pharming"?

Phishing:-

The scam that uses spam (unsolicited e-mail) to lure consumers into disclosing sensitive personal information—such as social security numbers, account and routing numbers, credit card numbers, personal identification numbers, passwords, and other private data. The unsolicited e-mails will appear to be from a legitimate business and in most cases hackers will choose a business that you are familiar with, such as a financial institution, credit card company, or insurance company. The e-mail will often ask you to "update" or "validate" your billing information to keep your account active. To further entice you, hackers will even direct you to a web site that looks identical to the legitimate web site—with the same logos, colors, and designs. All of which is simply an attempt to get consumers to submit their personal information to the impostors, who then uses that personal data to commit identity theft.

Pharming:-

When criminal hackers redirect Internet traffic from one Web site to a different, identical-looking site in order to trick you into entering your user name and password into the database on their fake site. With this information, hackers will then be able to gain access to your bank accounts, steal your identity, or commit other kinds of fraud in your name. Pharming scams are considered more dangerous than e-mail phising, since you can be redirected to a false site without any participation or knowledge on your part. The false Web sites used in pharming scams usually "spoof" their links so that they look exactly like the ones you expect to see, even in the code that appears when you mouse over them. Signs of a potential pharming site include:

• The login process or page looks different from the legitimate site.
• You are asked for information, such as your social security number or date of birth which is not normally
requested.
• The web site URL does not contain the prefix https://.
• Legitimate web sites that request confidential information such as usernames, password and credit card information will always encrypt the session with Secure Sockets Layer (SSL). Pharmed sites do not typically have SSL certificates. Look for the "padlock icon" in your browser and double click on the padlock to verify the SSL certificate.

Protect Your Web Site:-

An SSL Certificate added to your web site is an effective weapon against identity theft of personal data, phishing and pharming. If your customer accesses a web site that is posing as yours, your SSL Certificate (attached to your URL) causes the browser to instantly alert the customer that there is a problem with the "supposedly" secure connection. There will be no locked padlock icon in the bottom, right side of the browser's status bar. The address field will not show an https:// with the URL that indicates a secure connection.

Though requesters for SSL Certificates are rigorously authenticated, the occasional pharming cyber criminal is going to get one. In such a case, the browser will warn the customer that the intended URL does not match the certificate presented by the fake web site. This allows your customers to immediately abandon their activities, keeping their information secure.