Versions Compared

Version Old Version 25 New Version 26
Changes made by

elena.ryazanova

elena.ryazanova

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migration of unmigrated content due to installation of a new plugin
Section
Column

SSL Certificates

SSL

certificates

are

digital

signatures

that

websites

can

use

to

prove

their

authenticity

and

provide

their

users

with

privacy,

via

encryption.

Banking

websites,

Tufts

[

webmail

|https://exchange.tufts.edu/]

,

and

many

other

Tufts

services

use

SSL

certificates

signed

by

{link-window:http://en.wikipedia.org/wiki/Certificate_authority|tip=Certificate Authorities at Wikipedia}Certificate Authorities{link-window}

(CAs)

to

prove

their

identity

to

browsers

(which

in

turn

have

been

preconfigured

to

trust

a

limited

set

of

CAs).

Excerpt
Wiki Markup

Column
width5%


Column


unmigrated-wiki-markup
Column

{float:right|border=none}
{float}

Personal Information

Sites or applications that process or access Personal Information must require SSL. Browsers that do not request SSL should be redirected to the SSL port (the entire session - not just the login - must be encrypted). SSL certificates must be signed by a trusted CA. Legacy systems that process or access PI must obtain and deploy a CA-signed certificate as soon as possible.

...

Self-signed certs should not be used on any new production systems. It's highly recommended to build certificate assignment into your deployment process. Old production systems that have self-signed certificates should be phased into CA-signed certificates at the next opportunity.

{htmlcomment:hidden=true} h3. Get a
Wiki Markup
HTML Comment

Get a CA-signed

Certificate

UIT

can

[

coordinate

|https://docs.usg.tufts.edu/public/sslgeo.php]

the

purchase

of

an

SSL

certificate

signed

by

GeoTrust.

{htmlcomment}

Get a CA-signed Certificate

Order InCommon certificates

...