The SSL protocol (Secure Socket Layer) is used to secure communication by encryption and authentication of communicating parts (e.g. between two servers, web/email client and server, etc.). SSL ensures secure of communication against eavesdropping. The users have the certainty that they communicate who they really want to communicate with. SSL certificates generally use on-line shops that accept orders and data of the credit cards, web portals with administration to secure passwords and data, projects that are subject legislative provisions that require the secure transmissions.
Establishing of SSL connection works on principle of an asymmetric ciphers. Each of the communicating parties has a pair of encryption keys – a public and a private key. It is necessary to publish the public key and to ensure its correct transmission to all who want to use it. If anyone encrypts the message through this key, it is ensured that it can be decrypted only by the owner of the used the public key through the corresponding private key.
The addresses of the sites secured with SSL begin https://. Browser marks the secured sites with an icon of the lock in the status bar. The modern browsers display the lock icon in the address bar and this line is tinged with the different colors (green for fully satisfactory, yellow or orange for partially satisfactory [e.g. the satisfactory certificate issued for a different domain], red for unsatisfactory certificate). The standard port for HTTPS/SSL communications is 443, standard HTTP port is 80.
The certificates must be prolonged because their validity is limited. The expiration date is stored in the certificate and you can see it e.g. in the browser. Once the certificate expires it is automatically considered as invalid.
Types of certificates
The untrusted certificate
The untrusted certificate signed by an untrusted authority – e.g. certificate issued by our company. This certificated is only used for encryption of communications. It cannot be used for authentication. This certificate isn´t valid.
The trusted certificate
The trusted certificate signed by an international recognized certification authority (CA). The certification authorities are commercial companies that certify client´s applications and confirm the identity of the applicant. They join the obtained information to the issued certificate. Today are used different levels of the authentication of the domain owner. From the simple confirmation via link sent in an e-mail up to more detailed authorization that may include phone verification of the applicant. To the most well-known certificated authorities belong GeoTrust, THAWTE, VeriSign. The trusted certificate can be used for the authentication which is required in the case of banking and similarly strategical applications.
QuickSSL certificate is suitable for security of the encrypted transactions between the website visitor and the server. QuickSSL certificate doesn´t provide information about the identity of the website keeper, provides only information about the domain. This certificate is fully trustworthy in all of the major browsers from the versions IE 5.01+, Netscape 4.7+ a Mozilla 1+ up to the present day and is fully trustworthy too in all of the modern browsers, incl. the modern devises SmartPhone etc.
RapidSSL is a 128/256 bit certificate supported by the vast majority of current browsers. Its advantage is an easy installation. RapidSSL offers an ideal variant of the security simple e-shops and business transactions for the low cost.
The price of the SSL service consists of the fee for the run of the SSL service and of the fee for the certificate creation. The first part of the fee depends on the kind of the URL address of the secured connection to your web. FORPSI offers SSL certificates for one year. The offered trusted SSL certificates can be ordered for our serverhosting services (Virtual server, Dedicated server), possibly even without using some of these services. Current prices are listed in the price list below.
||50,- CZK / 60,50 CZK / month
||web on a non-standard port
||100,- CZK / 121,- CZK / month
||own IP address for the web needed - IP address included in price
||800,- CZK / 968,- CZK / year
||issued by International Certification Authority for 1 year, own IP address for the web recommended
||1650,- CZK / 1996,50 CZK / year
||issued by International Certification Authority GeoTrust for 1 year, own IP address for the web recommended
We are also able to provide certificates from authorities Symantec, GeoTrust, thawte, TrustWave and Comodo. If you are interested in these certificates or you have any questions, contact us.