Safe Data Transmission - Arkadiusz Szczurowski, CEO, SSLGURU.CO.UK
1. SAFE DATA TRANSMISSION
How to protect your customers
efficiently with SSL protocol?
Arkadiusz Szczurowski
CEO, SSLGURU.IN
1/ 20
2. Web users want to feel safe
➢
55% of respondents know they should check
presence of green bar ;
➢
60% feel safer seeing green bar in browser;
➢
80% looking for padlock while browsing the
webpages;
➢
81% check if protocol has changed to https://.
# According to Symantec data
2/ 20
3. If they won't be protected...
➢
82% respondents recognize protecting their data as
a top priority;
➢
75% respondents have abandoned online
transactions because they felt a website wasn’t
secure.
it means LOST MONEY
# According to Symantec data
3/ 20
4. Why secure attention is
necessary?
Because communication via Internet may bring many
dangers.
The main reason of it is the structure of world wide web
that creates a connection using a number of slots.
Each one of them may be used to steal a data.
4/ 20
5. Stealing Data? Piece a cake!
The MAN-IN-THE-MIDDLE attack is a form of active
eavesdropping in which the attacker makes independent
connections with the victims and relays messages
between them, making them believe that they are talking
directly to each other
over a private connection,
when in fact
the entire conversation
is controlled by the attacker.
5/ 20
6. Are you secured from MitM
attack?
If you...
…use open Wi-Fi access or other untrusted connections...
...log into sites that don't use https:// protocol...
...use widely available computers...
…don't check URL's you click in your e-mail box...
…answer is NO
6/ 20
7. There is only one solution….
Wherever it is necessary to provide personal information,
the site-administrator must ensure the security of data
transmission.
The solution is SSL
7/ 20
8. SSL - Secure Sockets Layers
Secure Socket Layer is a security protocol that operates
between a browser and a website. It provides
confidentiality, data integrity and authenticity by
cryptographic techniques. This is used to tell the browser
and its user trustworthy information about the website.
8/ 20
9. SSL visibility in browsers
Chrome
Firefox
IE
Dolphin Opera Mobile Android Native Browser
iOS 9/ 20
10. Which pages should have https?
- sign-up Wherever we use identification
data eg. logins, passwords or
- login financial information such as
- order credit card numbers.
- form On the pages where this kind
information is required and we
- chat (IRC) do not want or do not need
- etc. anyone to disclose.
10/20
11. SSL protocol is getting better
According to the new encryption standards since 2011, it
should be done with a key consisting of a minimum of
2048 bits.
The newest version of SSL 3.0 is TLS 1.2 refined in March
2011. This version seeks to remove the imperfections of
the previous editions.
11/20
12. How to avoid mistakes using an
SSL certificates?
✔
Choose trusted certificates vendors;
✔
Make sure that you properly configured the certificate
on the server;
✔
Remember about validity date of the certificate;
✔
Select certificate according to needs of the service.
12/20
13. Why it is so important?
Because many sites equipped with SSL has errors that
may result in impairment of the level of protection.
Qualys analysts checked 1 million pages from
Alexa.com rankings.
Only 9 of these has flawless configuration of
SSL certificate.
# Qualys, Inc., SSL and Browsers: The Pillars of Broken Security (2012)
13/20
14. The most common mistakes
➢
More than 67% of certificates were incorrectly
configured;
➢
Nearly 54% still supported SSL v2;
➢
About 20% had placed on an encrypted page links
without https://;
➢
About 54% of the sites did not use SSL to protect user
authentication;
➢
About 15% were using dangerous cookies.
# Qualys, Inc., SSL and Browsers: The Pillars of Broken Security (2012)
14/20
15. Became a Reseller in India
Our Reseller Program gives you access to lowest prices
for over 100 digital certificates from leading vendors:
15/20
16. Became a Reseller in India
It's also easy and convenient way to make extra
money.
Pay as You Grow (PaYG) — transfer and allocate
money on your account. With the growth of your
amount volume, your status is rising: from „Silver”,
through „Gold”, to „Platinum”. Higher status gives you
better conditions.
16/20
17. Became a Reseller in India
SSLGuru Reseller Program means:
➢
the widest SSL certificates offer,
➢
fast and easy ordering — choose traditional way or
use our API SSL to automate process,
➢
guarantee of the lowest prices — best prices allows
you to get highest margin,
➢
permanent access to money deposed on your
account,
➢
support of dedicated and helpful consultants.
17/20
18. Became a Reseller in India
We provide you with our API
You get:
✔
easy access to helpful technology,
✔
full security of all processes,
✔
effective technical support,
✔
guarantee of reliability,
✔
totally NO FEES tool.
18/20
19. Became a Reseller in India
Find out more about our Reseller Program.
Visit our webpage:
HTTPS://SSLGURU.IN/RESELLERS.HTML
19/20
20. Thank You for your attention
www.sslguru.in
info@sslguru.in
+44 20 331 87 787
@SSLguruin
facebook.com/SSLGURU.co.uk
20/20