Header Ads

How to get a free SSL/TLS certificate for a website.

So, what’s the big deal or why do I need SSL/TLS on my website? First, it prevents your pages from being tampered with while in transit and also provides the added benefit improved search engine rankings as search bots favor HTTPS sites. Before I go on to tell you how to implement SSL/TLS on a site, I’ll rant a bit about what it is.

SSL/TLS is a means of implementing security at a layer just above the TCP/IP, known as the socket layer. In 1999, the IETF released RFC 2246, which specifies the successor to SSL, known as Transport Layer Security (TLS). TLS represents a very small change to SSL, including tweaks to its message format and various cryptographic options. Because of the vast popularity of the original SSL and the extremely close relationship of SSL and TLS, most people still use the term SSL when referring to either SSL or TLS.

There’s a ton of information on SSL/TLS on the web if you want to find out more, but here’s a quick overview by Symantec. https://www.websecurity.symantec.com/security-topics/what-is-ssl-tls-https

So how do you implement SSL/TLS on a website? The easiest method, in my opinion, is by using the content delivery network Cloudflare. Simply sign up for an account with Cloudflare, go to your Cloudflare dashboard and copy their DNS name servers. Log into your web hosting account and replace your web hosting’s name servers with the name servers of Cloudflare. Allow for some time for it to propagate then log back into your Cloudflare dashboard and enable SSL/TLS.
Microsoft Regional Director and MVP for Developer Security, Troy hunt has created a four-part video series showing how you can do all of what I described above, just watch the videos below.

Happy viewing!!!!

No comments

Powered by Blogger.