SSL Advise

Hello Experts

I am gathering all the requirements which I would need to make a simple my account section for the customers on the website at the moment.

Access to this section is only to preapproved list of business customers, who would already have a login to connect.

I will not take any payment or store any card details in here.

Can someone please advise, if I would need to purchase SSL and install on the website for MyAccount section?

Thanks
arthur112Asked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Paul MacDonaldConnect With a Mentor Director, Information SystemsCommented:
It depends on what you're using the "my account" section for.  Without an SSL certificate, all data going back and forth between the client and the server is unencrypted.  This means people can (possibly) intercept the data that's being transmitted.  If you don't care about that, you don't need an SSL certificate.
0
 
Daniel Van Der WerkenConnect With a Mentor Independent ConsultantCommented:
Any information that you think is confidential or should be private regarding your customers should not be sent via a non-SSL connection. Basically, anyone with a network sniffer like Wireshark or such can access any information sent to and from your site if it's not encrypted with an SSL connection.

If this information isn't stuff that's publicly available, you should use an SSL connection.
0
 
GaryConnect With a Mentor Commented:
If you are only storing names and addresses (publicly available data) then it's up to you to decide whether you need to use SSL.
If you are storing things like credit cards, social security numbers etc (non public data) then these must be sent over SSL
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.