5.2. Sending Encrypted Data with Secure Sockets Layer
Secure Sockets Layer, or SSL, is the industry-standard technique for sending encrypted information over public networks. It's a conglomeration of technologies that all work together to guarantee that messages haven't been intercepted or altered en route.
5.2.1. Obtaining a digital certificate
As discussed in Chapter 2 of this minibook, digital certificates act as server signatures, assuring users that they're connecting to the server they think they are, and that the organization behind the server is at least minimally legitimate.
You have two choices in obtaining a digital certificate:
Purchase a commercial certificate from a Certificate Authority.
Create and sign your own certificate.
Purchasing a certificate from a commercial CA is certainly the easiest way to obtain a digital certificate, but it's also the most expensive. Verisign and Thawte are the two most well-known CAs, but you can find plenty of others that are less expensive. Part of what you pay for with the well-known commercial CAs is name recognition ...