Install and configure SSL support
What is Secure Socket Layer technology?
Secure Socket Layer (SSL) is a technology that allows Web browsers and Web servers to connect based on a Secure connection method. In this secure connection, the data to be transmitted is encrypted before being transmitted, and then decrypted immediately before processing the data. Both the browser and server encrypt all transmitted content before sending any data. SSL mainly handles the following important security issues.
L authentication
When you first try to communicate with the Web server based on secure connections, the server will give your Web browser a set of certificates that exist in the form of server certificates. The purpose of this certificate is to verify who the site is and what it claims. In some cases, the server may need a certificate about who the client is and what it claims (this is called client authentication ).
L confidentiality
When data is transmitted between a client and a server on the Internet, a third party can view and intercept data. SSL responses are encrypted, so data is not decrypted by a third party and can be kept confidential.
L integrity
When data is transmitted between a client and a server on the Internet, a third party can view and intercept data. SSL helps prevent data from being modified by a third party during transmission.
To install and configure SSL support on your independent Web server, you need the following components. If you are using the J2EE1.4 application server, SSL support is provided. If you are using another Web server, refer to your product documentation.
L server certificate key store (refer to Setting Up Digital Certificates, page 933 ).
L HTTPS connector (refer to configuring SSL connector, page 939 ).
To verify that SSL Support is available, see verify SSL Support (page 939 ).
Install a digital certificate
Note: The digital certificate of J2EE1.4 application server has been generated and can be found in <J2EE_HOME>/domains/domain1/config.
To use SSL, the J2EE Server must have an associated certificate for each external interface or IP address, which can achieve a secure connection. The principle of this design is that a server must provide a reasonable guarantee about which the owner is what you think, especially before receiving some sensitive information. The idea that a certificate is a driver's license with a network address number is useful. It indicates the company to which the site is associated and some basic contact information about the site owner or administrator.
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.
A Free Trial That Lets You Build Big!
Start building with 50+ products and up to 12 months usage for Elastic Compute Service