SSL authentication stands for Secure Sockets Layer and is a protocol for creating a secure connection for user-server interactions.
All web interactions involve both a server and a user. Users often enter or have sensitive, personal information on sites that leave people and systems vulnerable. User interactions need to be stable, verifiable, and secure. The way that a server verifies that the user is a real person is by collecting information. There are a number of ways this can be done.
- A person accesses an SSL website through a browser. Then, the browser “introduces” the individual to a website. The browser collects and verifies information to ensure that the site is legitimate. If it’s a bad site, the browser will report back to you.
- If it’s a secure site, the site will present its SSL certificate. If that certificate is unexpired, it is encrypted and safe to use. This includes the server’s public key, which the browser replicates and sends back to the server.
- When the server receives the copy of a site’s public key, it then starts the session with the website.
Domain validated certificates