Solved

SSL Advise

Posted on 2013-06-24
3
383 Views
Last Modified: 2013-06-25
Hello Experts

I am gathering all the requirements which I would need to make a simple my account section for the customers on the website at the moment.

Access to this section is only to preapproved list of business customers, who would already have a login to connect.

I will not take any payment or store any card details in here.

Can someone please advise, if I would need to purchase SSL and install on the website for MyAccount section?

Thanks
0
Comment
Question by:arthur112
3 Comments
 
LVL 34

Accepted Solution

by:
Paul MacDonald earned 167 total points
ID: 39271333
It depends on what you're using the "my account" section for.  Without an SSL certificate, all data going back and forth between the client and the server is unencrypted.  This means people can (possibly) intercept the data that's being transmitted.  If you don't care about that, you don't need an SSL certificate.
0
 
LVL 20

Assisted Solution

by:Daniel Van Der Werken
Daniel Van Der Werken earned 167 total points
ID: 39271341
Any information that you think is confidential or should be private regarding your customers should not be sent via a non-SSL connection. Basically, anyone with a network sniffer like Wireshark or such can access any information sent to and from your site if it's not encrypted with an SSL connection.

If this information isn't stuff that's publicly available, you should use an SSL connection.
0
 
LVL 58

Assisted Solution

by:Gary
Gary earned 166 total points
ID: 39271342
If you are only storing names and addresses (publicly available data) then it's up to you to decide whether you need to use SSL.
If you are storing things like credit cards, social security numbers etc (non public data) then these must be sent over SSL
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

IntroductionWhile developing web applications, a single page might contain many regions and each region might contain many number of controls with the capability to perform  postback. Many times you might need to perform some action on an ASP.NET po…
Microservice architecture adoption brings many advantages, but can add intricacy. Selecting the right orchestration tool is most important for business specific needs.
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now