Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

organization wide digital certificate

Posted on 2013-12-21
5
Medium Priority
?
78 Views
Last Modified: 2016-07-13
For each user we had to buy and use individual user certificate from third party which provides website to access their website. Now we are planning to buy and use organization wide digital certificate ( known as site digital certificate as well ) from that third party instead of buying and using individual user certificate to access their  website. So I want to know what organization wide digital certificate is , if  organization wide digital certificate is user certificate or computer certificate type, differences between organization wide digital certificate and individual user certificate , how to install organization wide digital certificate  and if we only need one organization wide digital certificate to buy for all users to access that third-party site.
0
Comment
Question by:AungMyat
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
5 Comments
 
LVL 65

Assisted Solution

by:btan
btan earned 2000 total points
ID: 39734367
It does not makes any difference whether it is computer or user certificate as both is dealing with authenticating and verifying the identity. If the past practice change from specific user become the use of site, are you saying only one cert for all users such as blanket granting as long as I am an employee of your enterprise?

The user authentication should still stands for individual. I see the site based certifcation as to mean organisation validated compared to domain validated. Pls consider
http://www.opensrs.com/blog/2012/06/why-business-customers-should-use-organization-validated-ssl-certificates/
0
 
LVL 65

Accepted Solution

by:
btan earned 2000 total points
ID: 41704440
The question is asking on the fundamentals  of the digital family of certificate type. Primarily all digital certificate is used mainly as a form of authentication, digital signing and encryption. They are issued to individual (client), host (computer) or organisation specific service (web services  or systems services etc).

For organisation wide certificate, or I see it as organisation validated certificate represents an enterprise identity whereby CA likebthe 3rd party one mentioned prior to certificate issusance, conducts checks on the right of the applicant to use a specific domain name as well as it conducts some vetting of the organization. Typically as compared to client and computer certificate which isbself explanatory, will show additional vetted company information to users or visitor when clicking on a trusted icon or some called a secure seal to provide an enhanced visibility in who is behind the site and associated enhanced trust. One example is globalsign CA which shows such background info via Secure Site Seal https://www.globalsign.com/en-sg/ssl-information-center/using-secure-site-seal/

This type of organisation wide certificate is unlike the more common Domain Validation (DV) Certificates where has the CA checks the right of the applicant to use a specific domain name. It represents a Service or website domain. Or I loosely see it as even client or hostname that is FQDN represented as in using Active directory as reference. Note that in this case there is no company identity information vetted and no information is displayed other than encryption information within the Secure Site Seal for the case of Globalsign CA.

See comparison of different certificate in
https://www.globalsign.com/en-sg/ssl/organization-ssl/

For provisioning of certificate and installation cum usage will depends on the servers and intent you are talking about. Suggest the how to video (from Globalsign) as a good starter. A tip is normally 3rd party CA always has material on those use case and another candidate is DigiCert.

https://www.globalsign.com/en-sg/resources/
0
 
LVL 65

Expert Comment

by:btan
ID: 41704443
For consideration on the add on for solution as per http://#ID:41704440
0

Featured Post

Tech or Treat!

Submit an article about your scariest tech experience—and the solution—and you’ll be automatically entered to win one of 4 fantastic tech gadgets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lease-to-own eliminates the expenditure of hardware replacement and allows you to pay off the server over time. Usually, this is much cheaper than leasing servers. Think of lease-to-own as credit without interest.
Keystroke loggers have been around for a very long time. While the threat is old, some of the remedies are new!
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…

596 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question