Secure Sockets Layer is a protocol (by Netscape) for transmitting private documents through the Internet. The Secure Sockets Layer protects data transfer over http using server’s SSL Certificate encryption. When a browser points to a secured domain, an SSL handshake process establishes the secure session between the server and the client with unique session keys. An SSL Certificate contains a public key and a private key, public key is used to encrypt information and private key is used to interpret it. Generally, URLs that require an SSL connection start with https: instead of http:

If a user attempts to submit personal information to an unsecured web site (site not protected with a valid SSL certificate), the browser’s built-in security mechanism triggers a warning to the user, reminding that the site is not secure and that sensitive data might be intercepted by third parties.

For the best security practices, one should install a unique certificate on each server and choose a True 128-bit Certificate by purchasing a Server Gated Cryptography (SGC) (enables 128 or 256 Bit SSL encryption depending on the browser, operating system and host server). To install SSL certificate, you need the original private key, which was created when you first generated your Certificate Signing Request (CSR). If you cannot find or access it, you cannot use the certificate and you have to get a new one. A unique certificate keeps private keys protected, and an SGC enabled certificate ensures that every site visitor (using any browser or operating system) connects at the highest level of encryption the system is capable of.

For more information please visit http://blog.areawebsolutions.com/what-is-an-ssl-certificate.html.