There are two main online security problems that digital certificates solve:
- Authentication – proving a company's (or server's) identity online and in so doing create a sense of trust and confidence in using a website.
- Encryption - offering protection for the data submitted to a website (or between servers) so that in the event of interception, it will be unintelligible without the unique key used for decryption.
Solving these security problems allows online business to protect against the following scenarios:
- Spoofing - The low cost of website design and ease with which existing pages can be copied makes it all too easy to create illegitimate sites that appear to be published by established organizations. In fact, con artists have illegally obtained credit card numbers by setting up professional-looking storefronts that mimic legitimate businesses.
- Unauthorized Disclosure – when information is transmitted "in the clear", making it possible for hackers to intercept the transmissions and obtain sensitive information from customers.
- Data alteration - the content of a transaction can be intercepted and altered en route, either maliciously or accidentally. User names, credit card and social security numbers as well as currency amounts, indeed any information sent "in the clear" is all vulnerable to alteration.
So what are the practical applications of digital certificates?
Firstly, looking at categories of data, the most common deployment is for securing transmission of financial information in ecommerce. However, with incidence of identity theft on the rise, protecting the transmission of a broad range of personally identifiable information is becoming ever more important. This category of data would include identity and social security numbers, e-mail addresses and demographic information as well as registration and login processes.
In terms of applications and protocols, thawte SSL certificates can be used to secure the following:
- Web Servers
- Mail Servers
- FTP Sites
- Internet Chat