HTTP and HTTPS protocols

Question

HTTP and HTTPS protocols

my question is related to the hypertext protocol.

What are the requirements of my side to be able to use HTTPS instead of HTTP in areas where the user enters confident information or when the registration process takes place.

Thank.

+2

security http authentication https protocols

bogha 03 oct. '09 at 9:38

source to share

2 answers

First of all, you need to configure your web server to use https; this, in turn, requires a server certificate. You can either create your own server certificate or buy one from one of the certification authorities. The latter will force the browser to trust that your site is genuine (whereas in the case of something you built yourself, a man-in-the-middle attack or phishing could occur from the browser's point of view).

How to fine tune the server, you need to discuss it on the server.

+2

Martin v. Löwis 03 oct. '09 at 9:43

source to share

Vinko Vrsalovic · Accepted Answer · 2009-10-03T09:41:45+0000

You need a certificate (you can buy one , which is usually identified by browsers, or create a self-signed certificate that will raise a warning in browsers) and a server capable of running HTTPS. Servers that support HTTPS allow you to define which pages are served over HTTP and over HTTPS.

HTTPS IS NOT authentication, by the way, only encrypts messages to prevent interception of messages sent between the server and the client.

You can use any authentication method over HTTPS, but you need to provide it (be it HTTP authentication or something in your application.)

Not much to say given your ambiguous question.

HTTP and HTTPS protocols

More articles: