Two keys are used in this service, known as Public Key that encrypts data and the other Private Key that not only decrypts data but also creates Public Key. It is possible to have a secure email transaction on the web that is fully secured by using the above keys in two sets. It must be noted that both the parties involved in the transaction should have the Public Key of the other.
Prevention of MITM Attacks
To ensure verification of the Public Key the SSL digital certificate comes into the picture. It helps in making sure that there is no tampering done with the Public Key. Attacks by Man in the Middle or the MITM are prevented due to this. Otherwise the MITM is an attacker who first captures the data and then makes certain modifications in the data while it is in transit.
To make sure that the security certificate proves to be of best use, the SSL certificates have to be trusted as well otherwise in the certificate too modifications could be made by the attacker like they would do in the case of Public Keys. With the availability of Certificate Authorities or the CAs there is no need for end users to do the verification manually.
Signed Duly By CA
The certificates SSL are duly signed by the CAs thus allowing users to browse in a normal way with the transaction being well secured in the process. The SSL Certificate could be signed with any website that is reliable. There are a number of popular websites which can be termed as reliable these days since they use the SSL Certificates.
Even the strongest of encryption can be handled well by the fastest of computers in today's times due to the provision of SSL certificates. When the certificate is signed by the CA it must be installed. Procedures for installing the SSL digital certificate is quite simple and need just a few changes to be made in the dedicated server that is being secured.
Expiry Date Is Important
Once the certificate installation is done, till the date of expiry it functions which from the date of issue is, around 12 months. An expiry date is provided in case of theft of a certificate from a site if the server that is being managed becomes compromised. The certificate can be revoked by the CA in such a case and the websites credibility to send a secure email which was secured previously can now be maintained.
Another important thing to note is that the certificates SSL function on domains that have been signed for only. A separate SSL Certificate is applicable for each of the domain names individually. Even if a particular payment has to be made for obtaining the SSL certificate it pays off in a big way when criminals do not capture the data that has been transmitted.
Article Source: http://www.articlesbase.com/web-hosting-articles/what-is-ssl-and-how-does-it-function-6050541.html
About the Author
Jass Sawhney specialises in writing for services in the IT sector. He has in-depth knowledge and experience in the field of web hosting, windows hosting, Linux web hosting, domain names, domain search, domain name search, domain reseller, cloud server, reseller hosting, website builder, website creator, SSL, SSL certificates, SSL digital certificates, business emails and email services among others.