| Preventing unauthorized users from accessing our Web applications is not main security issue the important thing is to protect data across the internet to do this we use IIS and IIS supports a standardized means of encrypting and decrypting Web requests and responses. This cryptography requires that you request an encryption key called a server certificate from an independent third party called a certificate authority.
SO SSL is comes in existance the SSL (Secure Sockets Layer) is the standard means of ensuring that data sent over the Internet cannot be read by others. When a user requests a secure Web page the server generates an encryption key for the users session and then encrypts the page data before sending a response. On the client side, the browser uses that same encryption key to decrypt the requested Web page and to encrypt new requests sent from that page.Below are the some step to maintain SSL:-
1. Generate a certificate request from IIS.
2. Request a certificate from a certificate authority.
3. Install the certificate on the server using IIS.
4. Install the certificate on browsers if you are using a test certificate.
5. Use the Secure Hypertext Transfer Protocol (HTTPS) when accessing secure pages in your application. | | |