Home > Customer Service > Security Secure Web Page Technology What is encryption? How to Confirm Web Page Security What is SSL? What is a SSL Certificate? How do SSL Certificates work? What is the difference between a 40-bit SSL and 128-bit SSL? What is encryption? An encrypted SSL connection requires all information sent between a client and a server to be encrypted by the sending software and decrypted by the receiving software, protecting private information from interception over the Internet. In addition, all data sent over an encrypted SSL connection is protected with a mechanism for detecting tampering - that is, for automatically determining whether the data has been altered in transit. This means that users can confidently send private data, such as credit card numbers, to a Web site, trusting that SSL keeps it private and confidential. Back to the top How to Confirm Web Page Security SSL server authentication allows users to confirm a Web server's identity. SSL-enabled client software, such as a Web browser, can automatically check that a server's certificate and public ID are valid and have been issued by a certificate authority (CA) listed in the client software's list of trusted CAs. To confirm that a Web Page is securely encrypted, simply follow the steps below: Step 1 Point to a blank space on the Web Page and click your RIGHT mouse button to display the Page Options Menu. Step 2 Point to the "Properties" option at the end of the list and click your LEFT mouse button. This will display all the information about that Web Page, including its "Connection". A Secure Web Page will display "SSL Encryption" information in this area. Back to the top Step 1 Step 2 What is SSL? The Secure Sockets Layer (SSL) protocol, originally developed by Netscape, has become the universal standard on the Web for authenticating Web sites to Web browser users, and for encrypting communications between browser users and Web servers. Because SSL is built into all major browsers and Web servers, simply installing a digital certificate, or SSL Certificate, enables SSL capabilities. Back to the top What is a SSL Certificate? Installed on your Web server, a SSL Certificate is a digital credential that enables visitors using Web browsers to verify your site's authenticity and to communicate with it securely via SSL encryption. Back to the top How do SSL Certificates work? A customer contacts your site and accesses a secured URL: a page secured by a SSL Certificate (indicated by a URL that begins with "https:" instead of just "http:" or by a message from the browser). Your server responds, automatically sending the customer your site's digital certificate, which authenticates your site. Your customer's Web browser generates a unique "session key" to encrypt all communications with the site. The user's browser encrypts the session key itself with the site's public key so only the site can read the session key. A secure session is now established. It all takes only seconds and requires no action by the user. Depending on the browser, the user may see a key icon becoming whole or a padlock closing, indicating that the session is secure. Back to the top What is the difference between 40-bit SSL and 128-bit SSL? The primary difference between the two types of SSL Certificates is the strength of the SSL session that each enable. SSL comes in two strengths, 40-bit and 128-bit, which refer to the length of the "session key" generated by every encrypted transaction. The longer the key, the more difficult it is to break the encryption code. 128-bit SSL encryption is one of the world's strongest: according to RSA Labs, it would take a trillion-trillion years to crack using today's technology. Microsoft and Netscape offer two versions of their Web browsers, export and domestic, that enable different levels of encryption depending on the type of SSL Certificate with which the browser is communicating. 40-bit SSL (Secure Server) IDs enable 40-bit SSL when communicating with export-version Netscape and Microsoft Internet Explorer browsers (used by most people in the U.S. and worldwide), and 128-bit SSL encryption when communicating with domestic-version Microsoft and Netscape browsers. 128-bit SSL (Global Server) IDs enable 128-bit SSL encryption - the world's strongest - with both domestic and export versions of Microsoft® and Netscape® browsers. Back to the top