| Section |
|---|
| Column |
|---|
SSL Certificates
{float:right|border=none}{include:Snippet - Disclaimer}{float}
h3. Certificates
{excerpt}SSL certificates are digital signatures that websites can use to prove their authenticity and provide their users with privacy, via encryption. Banking websites, Tufts [webmail|https://exchange.tufts.edu/], and many other Tufts services use SSL certificates signed by {link-window:http://en.wikipedia.org/wiki/Certificate_authority|tip=Certificate Authorities at Wikipedia}Certificate Authorities{link-window} (CAs) to prove their identity to browsers (which in turn have been preconfigured to trust a limited set of CAs). |
|
{excerpt}
{column:width=5%}
\\ | | Column |
|---|
 Image Removed
|
| Column |
|---|
Image Added
|
| Column |
|---|
| Wiki Markup |
|---|
{float:right|border=none}{include:Snippet - Disclaimer}{float}
|
|
|
Personal Information
Sites or applications that process or access Personal Information must require SSL. Browsers that do not request SSL should be redirected to the SSL port (the entire session - not just the login - must be encrypted). SSL certificates must be signed by a CA. Legacy systems that process or access PI must obtain and deploy a CA-signed certificate as soon as possible.
...