The Top 10 TLS/SSL Client, Server, and Application Best Practices | SlashdotMedia AdOps Asset Management

The Top 10 TLS/SSL Client, Server, and Application Best Practices

Ensure that you are using TLS/SSL certificates in the most secure manner. Read this whitepaper for an in-depth breakdown of the top 10 TLS/SSL client, server and application best practices.

This whitepaper covers how to ensure that:
• Security software and settings on your web server are up-to-date.
• Your Internet browser and client are up-to-date.
• Your client computers are free of malware.
• You keep an eye on the expiry date of your TLS/SSL certificates and replace them quickly.

Hidden Dangers Lurking in E-Commerce: Reducing Fraud with the Right SSL Certificate

E-commerce has grown at exponential rates in the past decade, with consumers quickly recognizing the convenience of purchasing goods online. This growth in online purchases rests upon a foundation of trust. People trust that the websites they use to track finances and make online purchases are secure and legitimate largely because of Secure Socket Layer (SSL) certificates.

SSL certificates verify that the provider is who they claim to be and also indicate secure connections between personal devices and company websites. There are three types of SSL certificates, each requiring a different level of authentication: DV, OV and EV.

Understanding the differences among each SSL certificate type is important to help prevent falling victim to scammers. For example, DV certificates are quick and easy to procure and don't require any type of information indicating the person trying to get the DV certificate actually represents a legitimate business. Fraudsters often use DV certificates to lure consumers to phishing websites that look authentic but are designed to steal sensitive information. For this reason, doing any type of ecommerce transaction on a DV-only site poses risk.

Online shopping isn't going away. Until the industry requires an OV or EV certificate for e-commerce sites or an easier way to identify the types of certificates, consumers will have to bear some of the burden of combating cyber risks. Knowing the risks ahead of time, however, is half the battle.

Six Golden Rules for Selecting an SSL or TLS Certificate

The foundation of trusted Internet communications are Secure Socket Link (SSL) certificates, an encryption technology installed on Web servers that permits transmission of sensitive data through an encrypted connection.

Using a public-key infrastructure (PKI), SSL certificates authenticate the end-use Website and the endpoint server, making it difficult for those sites to be imitated or forged.The acquisition of SSL certificates should always be a relatively easy experience; however, the purchasing decision should never be regarded lightly.

When businesses consider SSL certificates; there six Golden Rules a purchaser should keep in mind. This whitepaper provides an overview of the SSL certificated market, the six golden rules of purchasing SSL certificates and how Symantec addresses each of the golden rules.

At the end of the day, people want to make sure their Web sites are secured with as little friction as possible - Symantec gives businesses every opportunity to achieve that goal.

Raise Your Google Ranking

To help create a more secure web, Google now gives HTTPS-secured sites an SEO (Search Engine Optimization) boost to help safer sites become popular sites.

Learn more about this and other ways to boost your ranking in this white paper.

Website Security For Dummies

This 'Website Security for Dummies' Guide offers an insight and an unique understanding of the threats that impact the online business and helps answer the below questions and more:

How does SSL work?
What makes EV SSL worth it?
Why use the Always On SSL approach?
What are the most common threats?

Ultimate Guide to Assessing and Comparing Two-Factor Authentication Solutions

Discover key areas of difference between two-factor authentication solutions and gain insight on concrete criteria for evaluating technologies and vendors with Duo Security’s free two-factor evaluation guide. In this guide, you will learn:

How to evaluate the security, reliability, and scalability of a two-factor solution
What kind of solution allows you to detect and react to potential threats
How to determine the time and costs involved in rolling out a two-factor solution
Key criteria to drive user adoption and increase productivity

Two-Factor Authentication Evaluation Guide

Modern two-factor solutions have evolved to support new, complex technology models that change how we use data, including cloud computing and BYOD (Bring Your Own Device).

Two-factor authentication — there are so many different solutions, authentication methods, integration issues, and new security concerns cropping up in the market. With such a large diversity of vendors, it's easy for IT security decision-makers to get confused about which solution is right for their organization.

This guide walks through some of the key areas of differentiation between two-factor authentication solutions and provides some concrete criteria for evaluating technologies and vendors.

In this guide, you will learn:

How to evaluate the security, reliability and scalability of a two-factor solution.
What kind of solution allows you to detect and react to potential threats.
How to determine the time and costs involved in rolling out a two-factor solution.
Key criteria to drive user adoption and increase productivity.

Best Practice Security in a Cloud Enabled World

This report explores that security in a fast-paced technology-infused world cries for an “invest once and deploy everywhere” approach. For this to be realized, security must be planned in advance and built-in, yet still be fluidly adaptable to circumstances, and singularly controllable.

Securing Multiple Domains with SSL

As the backbone of web security, secure sockets layer (SSL) technology is a must for securing sensitive data passing over the Internet — whether that's e-commerce traffic, remote access to internal servers, or other secure communications. Usually, one SSL certificate secures just one domain name or URL; however, some common situations are better handled with a type of certificate that allows multiple domains to be secured with just one certificate.

Read this guide to learn about typical situations where multiple domain certificates are the ideal solution, how multiple domain certificates work, and how to select the right multi-domain certificate for your needs.

Introduction to Web Analytics for E-Commerce: How to Track Activity to Optimize Your Web Site

Analytics can be a powerful tool, so now is a great time to learn more about web metrics. Use this guide to understand the basics of what web analytics are and why they’re important, what metrics you should track, and how you can use this information to optimize your site and encourage customers to visit often and buy more.

Creating an E-commerce Web Site: A Do-It-Yourself Guide

In this guide, you'll learn about what goes into creating your own do-it-yourself (DIY) e-commerce web site, from picking the right tools and services you’ll need to create your web pages, to selecting the best hosting provider and payment solution to fit your business, to figuring out the best security for your site.

Geek Guide: Apache Web Servers and SSL Authentication

Congratulations! You’ve decided to set up a Web site. The site might be for your personal use, for sharing family pictures, for a blog, for an SaaS application, or any number of other possibilities. In all of those cases, people will access your site using the Hypertext Transfer Protocol (HTTP). HTTP has evolved and improved through the years, but one thing about it hasn’t changed—the fact that all of the traffic sent on an HTTP connection is unencrypted.

The bottom line is that whether you want or need to do so, adding HTTPS to a site you’re running isn’t very hard to do. In this Geek Guide, I walk through what SSL/TLS is (and isn’t), how you can create or buy a certificate, how to install that certificate into an Apache server and then how to configure Apache such that a subset of URLs on your system are covered by SSL.

Google Ranking Report

To promote safer websites and help create a more secure web, Google now gives sites secured with Always On SSL an SEO (Search Engine Ranking) boost. Learn about this and other ways to rank higher with GeoTrust.

E-commerce 101: A Guide to Successful Selling on the Web

For many business owners, launching an online shopping site makes perfect sense. However, there are some important things you should know before diving into the e-commerce marketplace. The online economy is ripe with opportunity, but it's also rife with pitfalls that can trip up even the savviest business person. This guide reviews the basics of setting up, securing, and promoting your e-commerce site. With a little knowledge, you'll be well on your way to success in the online economy.

SSL 101: A Guide to Fundamental Website Security

As use of the Internet has grown, the Web has also become more popular with scammers, identity thieves, and other cybercriminals. Given the number of people who experience or have heard about phishing and other Web-based scams, many Internet users don't feel comfortable sharing their personal details online. Fortunately, there is secure sockets layer (SSL) technology, a standard solution for protecting sensitive information online. But there's more to SSL than just basic safety.

Read this guide to learn about what SSL does, how it works, and how it can help build credibility online.