Home Data Center Wolves in sheeps’ clothing

Wolves in sheeps’ clothing

0
Wolves in sheeps’ clothing
0

Things often turn out great when you do them yourself. But when it comes to signing SSL certificates, you might want to give that DIY project a second thought. Before digging deep into the risks of using self-signed certificates, let’s spend some time getting re-acquainted with the functions of SSL certificates.

What do SSL certificates do?

The functions performed by SSL certificates can be broadly classified into two categories:

  • Encryption: SSL certificates encrypt data in transit using Secure Socket Layer (SSL) protocol. When you reach out to a website, SSL certificates ensure that the communication between you and the website remains private.
  • Authentication: SSL certificates certify the validity of an organization, so that users can make sure they’ve reached the correct website and feel safe sharing their private information.

Risks of using self-signed certificates.

SSL certificates are generally signed and issued by trusted third parties called certificate authorities (CAs). CAs verify that website owners really are who they claim to be (that’s right, browsers don’t trust you). If your organization has any public-facing websites, it’s best to use CA-signed certificates. Signing SSL certificates on your own can put you through either one or both of the problems below.

  • Browser security warnings: If you’re using self-signed certificates, browsers will display security warnings to visitors on your website, indicating that it is not safe enough for him/her to share private data with your organization. This drastically brings down the trust customers have in your organization and is a huge blow to your reputation.
  • Website phishing due to key compromise: Self-signed certificates originate internally, meaning the private keys remain with you. If you don’t keep track of your private keys, chances are high that they might land in the wrong hands. Attackers who have access to your private keys can create a similar certificate, set up a duplicate server, spoof your website, divert internet traffic, and steal your customers’ data. Self-signed certificates can turn into a complete disaster for you and your customers if private keys are compromised.

 

Read the entire article here, Wolves in sheeps’ clothing « ManageEngine Blogs

Via the fine folks at ManageEngine.

Categories:
ManageEngine ManageEngine delivers the real-time IT management tools that empower IT teams to meet organizational needs for real-time services and support. Worldwide, established and emerging enterprises - including more than 60 percent of the Fortune 500 - rely on ManageEngine products to ensure the optimal performance of their critical IT infrastructure, including networks, servers, applications, desktops and more. ManageEngine is a division of Zoho Corporation with offices worldwide, including the United States, India, Singapore, Japan and China.

Featured Resources:

Related Articles:

| LATEST FEATURED RESOURCES

White Papers

    Application Lifecycle Management with Stratusphere UX – White Paper

    Enterprises today are faced with many challenges, and among those at the top of the list is the struggle surrounding the design, deployment, management and operations that support desktop applications. The demand for applications is increasing at an exponential rate, and organizations are being forced to consider platforms beyond physical, virtual and cloud-based environments. Users […]

    Downloads

      Download Commvault VM Backup and Recovery: end-to-end VM backup, recovery and cloud management

      Commvault’s ability to provide end-to-end VM backup, recovery and cloud management creates a significantly better way to build, protect and optimize VMs throughout their lifecycle. Our best-in-class software for VM backup, recovery and cloud management delivers a number of significant benefits, including: VM recovery with live recovery options; backup to and in the cloud; custom-fit […]

      On-Demand Webinars

        What’s Going on in EUC Printing – A Technical Deep Dive!

        The IGEL Community and ThinPrint invite you to watch the following technical deep dive webinar. The agenda is to technically bring you up to speed on what’s going on in the EUC Printing space today along with a deep dive into new methods, technologies, printing scenarios and a discussion on why printing still matters. You […]

        Latest Videos

          Views All IT News on DABCC.com
          Views All IT Videos on DABCC.com
          Win big $$, visit ITBaller.com for more info!

          Visit Our Sponsors

          Close