Friday, August 6, 2010

Taking Control of SSL Certificates

If you running a e-commerce business,has your own web network and server, below are some cases and situation that might occur.

Case 1: The Mystery expiration 
 Your e-commerce server goes down and no one knows why. Thousands of dollars in sales are lost each hour while the IT department tracks down the problem. Turns out an SSL Certificate expired and the administrator who purchased it two years ago left the company. The renewal notice never reached the current administrator. VeriSign® Managed PKI for SSL allows up to three email addresses for notifications.

Case 2:
The Consolidation project
A recent merger requires the integration of two network systems. You need to purchase five premium and five standard SSL certificates and update domain contact information on three existing certificates. Purchasing the certificates individually will take valuable time from other integration activities. Purchase multiple certificates through Managed PKI for SSL for renewal and instant issuance.

REF Source:VeriSign While Paper: Taking Control of SSL Certificates While Improving Security and Reliability


+Executive Summary    
The number of Internet users worldwide passed the 1 billion mark in 2005 and is expected to reach 2 billion users by 2011.1  The Internet has become a critical component of operations and sales for organizations large and small, local and global, bargain and premium. Before people share personal and confidential information online, they look for security indicators that the Web site or application can be trusted and that their information will be encrypted.

 When a Secure Sockets Layer (SSL) Certificate expires, the owner not only loses sales, they also put their customers’VeriSign confidence at risk. Enabling secure transactions over increasingly complex networks requires a better SSL Certificate management process for the enterprise.

+ Managing Growth and Complexity
SSL Certificates are not just for e-commerce anymore. If an application or a Web site requires a username and password, the transmission of information should be protected by encryption. When securing 10 or more servers, managing individual certificates gets complicated.

They may have been purchased at different times, by different people, from different vendors, making it difficult to keep track of which certificate needs to be renewed when and by whom. Authentication for each individual certificate slows down the purchase process for multiple certificates. And some administrators may purchase and install SSL Certificates without notifying the central office.

An enterprise-level certificate management tool helps consolidate information and management. But most management tools only provide access to one type of certificate. A complete security picture requires real-time information about all types of SSL Certificates across multiple domains and departments.

While centralizing control is ideal for some IT organizations, others prefer to delegate administrative responsibility while retaining an accessible audit trail of changes and updates. No one wnts to have an SSL Certificate expire under their supervision.

Tracking renewals by 90, 60, and 30-day increments helps system administrators plan and budget for renewals. Better notification and contact information management ensures that the right people know when a certificate needs to be renewed. Early renewals and longer validity periods help prevent downtime and reduce cost of ownership.

visit us at www.verisign.com for more information.










©VeriSign, Inc. All rights reserved. VeriSign, the VeriSign logo, the checkmark circle, and other trademarks, service marks, and designs are registered or unregistered trademarks of VeriSign and its subsidiaries in the United States and in foreign countries. All other marks are trademarks of their respective owners. 

No comments: