|
Transmission
Security
|
 |
When
data is transmitted over a network (including the internet),
there's a chance that someone will intercept the data along
the way.
Software programs called packet
sniffers allow a malicious user to collect and interpret
transmitted data that could include usernames, passwords,
financial information, and other personal data your site
visitors don't want revealed.
|
In most cases, you won't care if someone intercepts data transmitted from
and to your site because most of the traffic will be requests for and deliveries
of static HTML pages and images that contain no sensitive information.
But, when you're allowing someone to log in to a restricted part of your
web site or transmit personal information (like name, address, email address,
etc.) through a form, you want to make sure that no one can intercept this
data.
This is done through Secure
Socket Sockets Layer (SSL) encryption.
You may have noticed the tiny lock symbol* on the bottom row of your browser
window when you've entered credit card information in an online form or
been in a secure area of a web site. This indicates that SSL encryption
is active and any data you transmit from the web page will be secure.
SSL support is built into every major browser and all your web server administrator
needs to do to utilize SSL encryption on your web site is to purchase and
install a SSL certificate on the server.
Most commercial web hosts will allow you to use their SSL certificate for
free - you just connect to the secure portion of the server when you want
SSL enabled.
SSL is the industry standard for protecting data during transmission and
you should use it on any web page where you collect sensitive data from
your site visitors.
*Note that you won't always see the
lock icon on the bottom of the browser when SSL is
enabled. Another good indicator is the web site address.
If it's preceded by https:// instead of http:// then
you're likely on a secure server. |
Next:
Protecting Where You're Most Vulnerable >
|
