• Collaterals
  • FAQ's
emSigner Brochure

AI Enabled Document Processing Automation

Enable secure paperless workflows to change your customer experience while creating a single source of truth for compliance

Download
SSL Brochure

Providing Comprehensive Security, Augmenting Business Value

Businesses, governments and public institutions worldwide trust eMudhra's SSL certificates to secure their website and protect their brand.

Download
emDiscovery Brochure

Automating the Installation and Management of Public & Private Certificates

Take the complexity out of managing multiple SSL/TLS certificates by automating issuance, installation, inspection, remediation, and renewal of public & private digital certificates using emDiscovery.

Download
emCA Brochure

End-to-end PKI

Today, companies are deploying billions of Internet-connected devices into mission-critical systems. Such kind of mass deployments are resulting in security risks with implications that grow with the number of deployed devices

Download
emSign Brochure

Remote Signing Made Simpler

eSign services offer users a new and innova-tive way to quickly sign documents using cloud based electronic signatures generated via e-KYC or Digital ID of a citizen/resident

Download
emSigner Signer Gateway Brochure

Plug-and-play Signing Solution for Your Business

Embedded document signing experience as part of your website or portal (works like a payment gateway)

Download
emCA Quick Read

Helping You Digitize and Secure Your Organizational Ecosystem

Did you know that emCA, eMudhra's End-to-end PKI solution, is trusted by some of the world's most prestigious and security-conscious organizations to secure and digitize their ecosystems?

Download
CSR Generation Guide

Generating CSR

A CSR or Certicate Signing Request is a block of encoded text (encoded using ASN.1 according to the PKCS #10 specication) that contains information a Certicate Authority (CA) needs to create your SSL certicate. Usually generated on the server where the certicate will be installed, it contains three crucial parts

Download

SSL FAQs - Basic SSL Questions

Learn everything that you need to know about SSL certificates by going through the below compilation of some Frequently Asked Questions related to SSL Certificates.
  • 01. What is SSL?
    SSL (Secure Sockets Layer) is one of the standard security protocols that is used by millions for establishing secure and encrypted connection between two systems - the two systems can be a server and a client (for example, a shopping website and browser) or server to server (for example, an application with personal identifiable information or with payroll information). It prevents criminals from accessing and modifying the information that is transferred between the two systems, including potential personal/sensitive details.
  • 02. What is TLS?
    TLS (Transport Layer Security) is the successor protocol and an improved version of SSL (Secure Sockets Layer). Just like SSL, it uses encryption for securing data or information transmission between two systems.
  • 03. What is the difference between SSL and TLS?

    Netscape developed the first version of SSL in 1995.

    The first version of TLS was developed by the Internet Engineering Taskforce (IETF) in 1999.

    SSL is a cryptographic protocol that uses explicit connections to establish secure communication between web server and client

    TLS is also a cryptographic protocol that provides secure communication between web server and client via implicit connections. It's the successor of SSL protocol

    SSL is less secured as compared to TLS

    TLS provides high level of security

    Support for Fortezza cipher suite

    Does not offer support for Fortezza cipher suite. However, TLS follows a better standardization process that makes defining of new cipher suites easier like RC4, Triple DES, AES, IDEA, etc.

    Message digest is used to create master secret- the symmetric key used for encryption between the Protocol Client and Protocol Server

    Pseudo-random function is used to create master secret key

    Message Authentication Code protocol is used

    Hashed Message Authentication Code protocol is used
  • 04. What is SSL Certificate?
    SSL Certificate is a bit of code that digitally binds a cryptographic key to an organization's details. When installed on a web server, the certificate activates trust vectors such as the browser padlock and https protocol. In the process it helps visitors to verify the authenticity of the website.

    SSL Certificate binds together:

    • A domain name, server name or hostname
    • An organizational identity (i.e. company name) and location
  • 05. Do I need to install a SSL Certificate on my website?
    Yes. SSL Certificate is needed for all website types. Earlier, SSL certificates were only installed on websites that collected information from the user. However, after Google's update related to usage of SSL Certificates, it is now installed on all websites, irrespective of whether they are collecting information or not.
    If you fail to install a SSL certificate on your website, most browsers will be prompted to display a 'Not Secure' warning to the visitors (of your website), which in most cases will drive them away.
  • 06. How does an SSL/TLS Certificate Work?
    Whenever a user visits a secure website (a website with a SSL/TLS Certificate), the SSL/TLS Certificate installed on it offers instant identity confirmation of the website and creates an encrypted connection as explained in the workflow below-
    • A browser or server tries to connect to a secure website (i.e. web server) by requesting it to identify itself
    • The web server sends the browser/server a copy of its SSL certificate
    • The browser/server ascertains whether or not to trust the SSL certificate. If it is satisfied, it sends a message to the web server
    • The web server responds by sending digitally signed acknowledgement back to start an SSL encrypted session
    • Finally, encrypted data/information exchange starts between the browser/server and the web server
  • 07. What is DV SSL Certificate?
    The SSL DV Certificate is a no-frills, encryption-only certificate that doesn't necessitate extensive vetting and can be issued almost instantaneously by using email-based, DNS-based or file-based validation methods, which ascertains that you own the domain you wish to protect. This makes them ideal for small websites such as blogging or online information sites that need instant SSL certification, but are not involved in any kind of exchange of sensitive customer information.
  • 08. What is OV SSL Certificate?
    A step up from standard Domain Validated (DV) SSL Certificates, OV SSL certificates provide instant identity confirmation and strong SSL protection for your website and business. It does so by activating the browser padlock and https protocol along with displaying a dynamic site seal that contains verified and time-stamped information about your corporate identity. In the process it helps visitors to verify the authenticity of your website and assure them that your business gives utmost importance to privacy and security of their data.
  • 09. Why do we need Code Signing Certificate?
    As a software developer or software publisher, nothing is more important to you than the integrity of your software script and code. If ever your release is hacked, infected, or altered in any way by a malicious third-party, not only will your reputation take a hit, but in most cases your customers won't trust you enough to give you a second chance. When the stakes are so high, it is imperative that you protect yourself, your brand name along with your customers with fool-proof security using Code Signing Certificate.

    Code Signing Certificate allows authorized software publishers to digitally sign and shrink-wrap executable scripts, codes and content. This provides explicit third-party confirmation of the publisher's identity along with the application's integrity.
  • 10. Why do we need Secure Email Certificate?
    The S/MIME technology powered Email Certificate gives you the liberty to digitally sign and encrypt your mails as well as attachments. In the process it will help you with two things. One is, ensure that the content is tamper-proof and can only be read by the intended recipient; while other is, allow the recipient to confirm and verify the source or origin as well as integrity of the message.
  • 11. What is the validity of SSL/TLS certificates?
    Starting on September 1st 2020, newly issued publicly trusted SSL/TLS certificates are valid for no longer than 398 days.

    The two primary reasons for incorporating shorter validity period for certificates are mentioned below:

    • Longer validity periods take longer to naturally roll out updates or changes
    • Enhanced identity authentication - after all, the information used to validate an identity loses its trustworthiness over time. The longer between identity validation, the greater the risk

    In simple words, shorter validity period of SSL/TLS certificates lead to improved security.
  • 12. Can I use one certificate for multiple domains of mine?
    Yes, you can use one SSL certificate for multiple domains - or one SSL certificate for multiple subdomains in addition to domains - using multi-domain SSL/TLS certificate.
    By leveraging TLS Subject Alternate Names (SANs), multi-domain certificate helps you protect every type of fully qualified domain names (FQDNs) including public ID addresses, private host names, IP addresses, sub-domains and so on. In the process, it completely eliminates the need to buy an individual SSL certificate for each and every domain you control, which can lead to significant savings with regards to time and money, while providing encrypted protection for all of your business and e-commerce needs.

Why emSign?

24X7 Support

Strong support along with a library of resources to ensure peace of mind

Security & Quality

We are CMMI Level 5 Company, ISO 27001, SOC2 and Webtrust certified

Credibility

Over 50 million certificates issued to hundreds of companies worldwide

Ready to join Partner Program with eMudhra?

Enjoy our products line up solution and price designed to match any kind of customer portfolio.
Become a Partner