SSL Certificate - Recommendations
Posted on 2005-04-20
I am looking for some advice concerning SSL Certificates with Tomcat/JSP. I have searched the web for answers, but I have received conflicting replies - so I turn to you my resident experts for some expert advice.
We have our site hosted on a Third Party Server and the site is based on Tomcat/JSP. We are looking to implement SSL Certificate as some information that the user is providing is sensitive etc. Our questions are:
1) What makes a good certificate - i.e. what are the key things to look out for when selecting to buy Comodo or Verisign?? (apart from price)
2) What are the best practices for implementing it. e.g.Have a different web application dealing with secure data? Have a seperate subdomain? secure.domain.com???
3) Anyone have any good links for SSL with Tomcat/JSP? i.e. Idiots guide.
Thanks in advance.