Principle and application of SSL (2) Configure HTTPS

HTTPS (hypertext Transfer Protocol over secure Socket Layer) is a security-targeted HTTP channel that is simply a secure version of HTTP. That is, the SSL layer is added under HTTP, and the security basis of HTTPS is SSL. It is a URI scheme (abstract identifier system) with syntax similar to "http: System". Used for secure HTTP data transfer. "Https:url" indicates that it uses HTTP, but HTTPS has a default port that differs from HTTP and an encryption/authentication layer (between HTTP and TCP). The system, initially developed by Netscape, provides authentication and encryption methods, and is now widely used in security-sensitive communications on the World Wide Web, such as transaction payments. The simple HTTPS communication process is shown in the figure.

HTTPS Basic communication flow

However, for a Web server, to support HTTPS traffic, you must download and install the certificate from the Certificate Server. A server can obtain certificates from a certificate provider or from a Certificate server of its own build. Here is an example of IIS, which adds HTTPS support for web traffic.

Configure iis5.0/iis6.0 to support HTTPS

Step 1 go to the Site Properties Select Directory Security, click the server certificate, and then click Next, as shown in Figure 8-7.

Figure 8-7 Opening the server Certificate Wizard

Step 2 Select the method for assigning the certificate.

Select New Certificate here, then click Next. As shown in Figure 8-8.

Fig. 8-8 method of optional assignment certificate

Step 3 Delays the request certificate, as shown in Figure 8-9.

Figure 8-9 Deferred request certificate