We help IT Professionals succeed at work.

We've partnered with Certified Experts, Carl Webster and Richard Faulkner, to bring you two Citrix podcasts. Learn about 2020 trends and get answers to your biggest Citrix questions!Listen Now

x

SSL with Outlook

Medium Priority
398 Views
Last Modified: 2008-03-17
Experts.
What is the difference between SelfSSL and purchasing an SSL certificate from Verisign.  I am not hosting a website and am only interested in securing OWA.  Thanks.
Comment
Watch Question

Commented:
Technically, absolutely nothing.  The SSL cipher strength and security of your applications are identical.
It's all a matter of trust.
Big companies will use Verisign, as it's internationally recognised as a trusted authority that can issue certificates.
Small companies/home users can get away with self-signing SSL certificates, especially if there's only one IT administrator in the company.  Just make sure you keep the keys in a safe place.

Not the solution you were looking for? Getting a personalized solution is easy.

Ask the Experts

Author

Commented:
Thanks for thre quick response.  Please correct me if I am wrong but SelfSSL is free and Verisgin is like $1,000.00?  So I am paying the grand for "image and impression"?

Thanks!
Top Expert 2007
Commented:
No no, not for "image and impression'. The difference is that Verisign is an internationally trusted authority, which means that their root certificates are already added by default to the trusted certificates in your webbrowser. So when signing your website with a Verisign certificate it is automatically accepted by the browser. Which is very important for large scale sites which use a lot of https, but indeed not for your OWA.

J.

Author

Commented:
Thanks guys!  Great information.  Bottom line I guess, is with OWA only SelfSSl is the way to go.  Whern hosting a high traffice commerce website, verisigin is the way to go.  One more question.  Verisigin says I can add certificates for each user to encrypt their mail messages.  The cost I bwlieve is $20.00/yr.  Will adding these casue any problems if I implement the SelfSSL?  Thanks!!!!!
Top Expert 2007

Commented:
No those won't create a problem. They are not used for SSL, but for encrypting the messega itself or for signing it (if that's what's in the certificate key usage).
Typically when encrypting mail the transmitter encrypts with the public key of the receiver, who then decrypts with his own private key.
When signing a mail, the  transmitter encrypts a hash ot the message with his own private key. Then the receiver decrypts the hash with his public key and compares it with a hash which he calculated himself. This is also used in non-repudiation schemes.
Of course, email client software must make this as transparent as possible for the user. You have to add that individual certificate to the client software.

J.

Author

Commented:
Thank you all!
Access more of Experts Exchange with a free account
Thanks for using Experts Exchange.

Create a free account to continue.

Limited access with a free account allows you to:

  • View three pieces of content (articles, solutions, posts, and videos)
  • Ask the experts questions (counted toward content limit)
  • Customize your dashboard and profile

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.