Web browsing on the Internet or on local intranets is one of the most commonly used applications within an organization. By default, the Hypertext Transfer Protocol (HTTP) does not employ data encryption for transfers between the Web server and the Web client.
With a Web Server certificate installed at the Web server, however, the Web server can implement Secure Sockets Layer (SSL), an encryption protocol. SSL implementation at the Web server accomplishes two things:
The client’s Web browser validates the Web server’s identity by performing certificate validation on the Web Server certificate.
Data is encrypted as it is transferred between the Web server and the client’s Web browser.
This chapter ...