What is SSL and how to implement it?

Content

 

1. What is SSL

SSL is used to encrypt connections for HTTP. The data from the server and the client is therefore sent securely and the user is assured that it will not be intercepted by a third party. If a trusted certificate is used, the web server is authenticated at the same time - the user is therefore connected to the entity with which they wanted to communicate.
 
On a shared webhosting we run the service through the so-called SNI (Server Name Indication). It allows different certificates to run on one IP address and port, the browser displays the address in the standard form https://www.domain.cz. The SNI extension is supported by all current web browsers (this method of secure connection does not work, for example, in the Internet Explorer + Windows XP combination).

Certificates securing an encrypted connection to the server can be issued as follows:
  • signed by a trusted authority Actalis S.p.a. - if the conditions are met, the DV SSL service is provided free of charge with the webhosting;
  • signed by a Let's Encrypt trusted authority - only the SSL service is paid for under this certificate;
  • signed by an internationally recognized authority (QuickSSL, RapidSSL) - here it is necessary to pay both for the certificate and for SSL itself;

2. Certificates we offer

2.1 QuickSSL

QuickSSL is useful for securing encrypted transactions between a site visitor and a server. The QuickSSL certificate does not provide the identity of the website operator, it only provides domain information. The QuickSSL certificate is fully trusted in all common web browsers from IE 5.01+, Netscape 4.7+ and Mozilla 1+ to the present and is also fully trusted in all new modern browsers, including mobile devices such as SmartPhone etc..

2.2 Rapid SSL

RapidSSL is a 128/256 bit certificate supported by the vast majority of current web browsers. It also has the advantage of easy installation. It enables the security of simple e-shops and business transactions at a low cost.

2.3 RapidSSL Wildcard

RapidSSL Wildcard is a 128/256 bit SHA-2 certificate for securing all subdomains. It has the advantage of support in the vast majority of modern web browsers along with easy installation. It enables the security of larger systems with multiple subdomains at a low cost.

2.4 Let's Encrypt

Let's Encrypt is an Internet Certificate Authority, supported by companies such as Mozilla Foundation, Akamai, Cisco Systems and Chrome. It is an automated service that provides a trusted certificate to the requester based on simple authentication. Let's Encrypt certificates are supported for all FORPSI shared web hosting options. Issuance and automatic renewal of these certificates is free of charge, for reliable functionality it is only necessary to ensure permanent routing of the secure domain to the FORPSI webserver.

2.5 Actalis (DV SSL)

It is a wildcard certificate of the "Domain Validated" type, issued by the Italian certification authority Actalis S.p.a. The certificate can be activated on all established subdomains of the main domain for a given webhosting. It is not possible to export the private key, the certificate can only be used on FORPSI shared web hosting. The installation of this certificate is automated and does not require an additional SSL service.
 
 Certificate comparison

Certificate

Type

Subdomains

Aliases

SSL service required?

DV SSL Actalis

DV

Let’s Encrypt

DV

Rapid SSL

DV

QuickSSL Premium

DV

Rapid SSL Wildcard (*)

DV

To order the SSL, follow these instructions. The procedure for activating the DV SSL certificate is described in this article.