Web site security is of an increasing concern these days, especially for websites using content management systems, ecommerce or storing private user information on web servers. Even if a website is not storing sensitive information or processing transactions - password access for malicious users can result in defaced websites, email address theft, spreading of viruses / trojans to visitors computers, using the server for sending spam or other activities.
If user information is not stored and transmitted securely on your website, you could be held liable for loss or misuse of your user's private information.
SSLIn order to secure transmissions between the web server and the website user, SSL security is setup. This takes the form of a certificate from an SSL provider which provides the necessary authorisation to encrypt email addresses / login names / passwords and any other information through the website. Furthermore a dedicated IP adress is registered in order to verify the identity of the site.
Without SSL, all passwords and user information are sent in plain text over the Internet - exposing the website to hacking attempts or theft of sensitive information.
All banks, online service providers and online mail services etc, use SSL as this is the only way of securing passwords and sensitive information moving around the Internet.
What websites should use SSL?
- Ecommerce stores
- Any site with a login or sign in that stores personal information
- Any company which needs to comply with privacy and security requirements
- Any site that needs to gain trust from their users