Security Certificates: Difference between revisions

From help.computerisms.ca
Jump to navigation Jump to search
(Created page with "*Security Certificates are a method of establishing trust between different entities on a network **An entity can be a person or a machine **Certificates can, in addition to c...")
 
No edit summary
Line 9: Line 9:
*Certificates can be purchased for the server so the warning doesn't appear in your browser, but they are prohibitively expensive for our hosting environment
*Certificates can be purchased for the server so the warning doesn't appear in your browser, but they are prohibitively expensive for our hosting environment
**Certificates in general are very very expensive in proportion to the effort required to make them.
**Certificates in general are very very expensive in proportion to the effort required to make them.
**In order to provide a comparably priced certificate system, Computerisms would have to charge over $1000/hour
**Computerisms can make certificates that will encrypt a connection every bit as good as a paid certificate for a small fraction of the cost
***What Computerisms can't do is get Microsoft to include our certificates in their system so end users think we are trusted.
***Certificates generated by Computerisms will not be automatically trusted by your computer, and therefor will always show you the certificate warning
**Certificates are a wonderful way for that industry to make an unjustifiably large pile of money.
*In the case of Computerisms and its customers, we can manually establish our trust, which in turn allows encryption of our passwords
*In the case of Computerisms and its customers, we can manually establish our trust, which in turn allows encryption of our passwords
**Despite the warning, the encryption is still taking place on our system
**Despite the warning, the encryption is still taking place on our system

Revision as of 13:20, 2 August 2012

  • Security Certificates are a method of establishing trust between different entities on a network
    • An entity can be a person or a machine
    • Certificates can, in addition to creating trust relationships, also be used to encrypt communications
      • This is especially important when transmitting a username and password across the internet
  • Certificate warnings indicates that your computer does not know the origin of the certificate on the server
    • Since your computer cannot verify the origin of the certificate on the server, it cannot establish a trust relationship with the server
    • By temporarily overriding the warning, you instruct your computer to trust the certificate on the server
    • Once the trust is established, then the certificates can be used to encrypt the communication so your password is not transmitted in clear text
  • Certificates can be purchased for the server so the warning doesn't appear in your browser, but they are prohibitively expensive for our hosting environment
    • Certificates in general are very very expensive in proportion to the effort required to make them.
    • Computerisms can make certificates that will encrypt a connection every bit as good as a paid certificate for a small fraction of the cost
      • Certificates generated by Computerisms will not be automatically trusted by your computer, and therefor will always show you the certificate warning
  • In the case of Computerisms and its customers, we can manually establish our trust, which in turn allows encryption of our passwords
    • Despite the warning, the encryption is still taking place on our system
      • Said another way: Security certificates are still securing your transmission, even though the warning might make you think otherwise.


  • Go to https://cal.domain.tld and accept the Security Certificate warning
  • Login with your email address as your User Name and your email password for Password and click Go
Retrieved from "http://help.computerisms.ca/index.php?title=Security_Certificates&oldid=271"