Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

organization wide digital certificate

Posted on 2013-12-21
5
Medium Priority
?
85 Views
Last Modified: 2016-07-13
For each user we had to buy and use individual user certificate from third party which provides website to access their website. Now we are planning to buy and use organization wide digital certificate ( known as site digital certificate as well ) from that third party instead of buying and using individual user certificate to access their  website. So I want to know what organization wide digital certificate is , if  organization wide digital certificate is user certificate or computer certificate type, differences between organization wide digital certificate and individual user certificate , how to install organization wide digital certificate  and if we only need one organization wide digital certificate to buy for all users to access that third-party site.
0
Comment
Question by:AungMyat
  • 3
3 Comments
 
LVL 65

Assisted Solution

by:btan
btan earned 2000 total points
ID: 39734367
It does not makes any difference whether it is computer or user certificate as both is dealing with authenticating and verifying the identity. If the past practice change from specific user become the use of site, are you saying only one cert for all users such as blanket granting as long as I am an employee of your enterprise?

The user authentication should still stands for individual. I see the site based certifcation as to mean organisation validated compared to domain validated. Pls consider
http://www.opensrs.com/blog/2012/06/why-business-customers-should-use-organization-validated-ssl-certificates/
0
 
LVL 65

Accepted Solution

by:
btan earned 2000 total points
ID: 41704440
The question is asking on the fundamentals  of the digital family of certificate type. Primarily all digital certificate is used mainly as a form of authentication, digital signing and encryption. They are issued to individual (client), host (computer) or organisation specific service (web services  or systems services etc).

For organisation wide certificate, or I see it as organisation validated certificate represents an enterprise identity whereby CA likebthe 3rd party one mentioned prior to certificate issusance, conducts checks on the right of the applicant to use a specific domain name as well as it conducts some vetting of the organization. Typically as compared to client and computer certificate which isbself explanatory, will show additional vetted company information to users or visitor when clicking on a trusted icon or some called a secure seal to provide an enhanced visibility in who is behind the site and associated enhanced trust. One example is globalsign CA which shows such background info via Secure Site Seal https://www.globalsign.com/en-sg/ssl-information-center/using-secure-site-seal/

This type of organisation wide certificate is unlike the more common Domain Validation (DV) Certificates where has the CA checks the right of the applicant to use a specific domain name. It represents a Service or website domain. Or I loosely see it as even client or hostname that is FQDN represented as in using Active directory as reference. Note that in this case there is no company identity information vetted and no information is displayed other than encryption information within the Secure Site Seal for the case of Globalsign CA.

See comparison of different certificate in
https://www.globalsign.com/en-sg/ssl/organization-ssl/

For provisioning of certificate and installation cum usage will depends on the servers and intent you are talking about. Suggest the how to video (from Globalsign) as a good starter. A tip is normally 3rd party CA always has material on those use case and another candidate is DigiCert.

https://www.globalsign.com/en-sg/resources/
0
 
LVL 65

Expert Comment

by:btan
ID: 41704443
For consideration on the add on for solution as per http://#ID:41704440
0

Featured Post

Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How does someone stay on the right and legal side of the hacking world?
A new hacking trick has emerged leveraging your own helpdesk or support ticketing tools as an easy way to distribute malware.
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…
Suggested Courses

564 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question