April 2011

SSL – Secure Socket Layer is a security Protocol. SSL Certificate is a digital signature. SSL Certificate is also known as Public Key Identity certificate. SSL is a protocol for securing communication between a web browser, and web server. Whenever you access a web server using https, the page you are sent is encrypted, and any information you send to that server is also encrypted

Install Root CA Certificate

1) Download your SSL Certificates from SSL Certificate Authorities like RapidSSL, Thawte, GeoTrust or VeriSign.
2) Use the Primary and Secondary Intermediate CA contents into a text file. (Use a text editor - Notepad or Vi.)
3) Primary Intermediate CA (file name as primary_inter.cer)
4) Use the below control to import this Certificate in the keystore:

keytool -import -trustcacerts -alias primaryIntermediate -keystore (your_keystore_filename) -file primary_inter.cer

5) For the Secondary Intermediate CA, (file name as secondary_inter.cer)
6) Use the below control to import this Certificate in the keystore:

keytool -import -trustcacerts -alias primaryIntermediate -keystore (your_keystore_filename) -file primary_inter.cer

Install the SSL Certificate

SSL CA email your Certificate. Use an attachment file(Cert.cer). Copy and paste it into a text file.
Use the below control to import your SSL Certificate:

keytool -import -alias -keystore (your_keystore_filename) -trustcacerts -file (your_certificate_filename)

Configure the SSL in Tomcat with server.xml

1) Close the Tomcat Server, when it is running. While it is started, Changes to the file /conf/server.xml are read by Tomcat Server.
2) Open the file < NPJBMK _HOME>/conf/server.xml in a text editor.
3) Detect the following section of code in the file. Remove comment tags around the Connector entry. The comment tags that are to be removed are shown below.

4) Save and restart Tomcat server

Symantec Corp. announced that its Secure Sockets Layer (SSL) Certificates are found on more than 70 percent of the Internet’s top 1,000 SSL-using websites while its closest competitor sits with just 4 percent. The Alexa Netcraft Index is a monthly snapshot of SSL Certificate use among the Internet’s most frequently visited sites. Symantec’s family of dominant SSL brands includes VeriSign, GeoTrust, Thawte, RapidSSL and TC Trust Center.

Last month’s report comes amid high profile discussions – from the social networks to the halls of power in Washington, D.C. – on the necessity for greater SSL implementation across the Internet’s Web properties. Concerns over rogue hotspots and related man-in-the-middle (MITM) attacks have given rise to an extension of SSL protection to Web sessions beyond login and transactional pages.

“As organizations more fully appreciate the variety and severity of online threats, the need for SSL-secured web sessions, at more touch points across the Internet, will become more and more apparent." "Online leaders seeking to maintain trust in their brands will continue to work with Symantec on the strength of its brands' reputations for strong encryption, innovative services and world-class technical support. When it comes to building trust online, business will continue to come to Symantec."

Catapult Data Services creates the monthly Alexa Netcraft SSL Index by cross-referencing the Netcraft SSL Survey of public-facing certificates with the Alexa Top Sites list, which ranks the 1 million most visited sites by popularity. As a result, the Alexa Netcraft SSL Index obtains an accurate picture of SSL Certificate usage across the websites that matter most.

Having acquired the first CA to provide SSL Certificates, Symantec continues its strong position in the market by offering customers more value-added services than the competition. For instance, VeriSign® SSL Certificates enable customers to rest assured that they are protecting their online transactions and communications with the industry’s strongest encryption. VeriSign SSL customers also receive daily malware scans and Seal-in-Search™, which enable the VeriSign seal to be displayed within search engine results to boost traffic to their sites.

Symantec is the leading provider of SSL and EV SSL protection worldwide, with nearly 70 percent of the EV SSL market. More than 100,000 websites display the VeriSign seal by deploying VeriSign SSL, VeriSign EV SSL, or VeriSign Trust Seal solutions. As the most popular and recognized security mark in the world, the VeriSign seal is viewed by Internet users up to 650 million times in a single day.

About Symantec:

Symantec is a global leader in providing security; storage and systems management solutions to help consumers and organizations secure and manage their information-driven world. Our software and services protect against more risks at more points, more completely and efficiently, enabling confidence wherever information is used or stored. More information is available at www.symantec.com

Original Source: Symantec