Browsing online was hideously insecure when we connected to websites using unencrypted http:// url links.
With the advent of SSL [now TSL], the link your browser makes with your bank's website, or the Stalking Directory, etc is (1) validated by [CA derived] certificates bundled in your browser and (2) secured with session encryption. I.e. https://
The number and quality of certificate authorities has varied down the years, and there have been some blatant counterfeits leading to man-in-the-middle attacks where a user's web browsing is viewed by the issuer of a fake certificate.
Certificates can be faked. The associated digital fingerprints not. So it is possible to verify if your browser is connected to the endpoint you expect or if your data is washing through a third party.
Scroll down to the fingerprint section:
Now open web server encryption test (SSL / HTTPS Check) · SSL-Tools and insert the url you are verifying. In our example: thestalkingdirectory.co.uk
....last step is to verify a match between the fingerprint declared to your browser by the connected endpoint also matches the CA-derived official fingerprint for that domain. I will distil into smaller slides in next post...
With the advent of SSL [now TSL], the link your browser makes with your bank's website, or the Stalking Directory, etc is (1) validated by [CA derived] certificates bundled in your browser and (2) secured with session encryption. I.e. https://
The number and quality of certificate authorities has varied down the years, and there have been some blatant counterfeits leading to man-in-the-middle attacks where a user's web browsing is viewed by the issuer of a fake certificate.
Certificates can be faked. The associated digital fingerprints not. So it is possible to verify if your browser is connected to the endpoint you expect or if your data is washing through a third party.
Scroll down to the fingerprint section:
Now open web server encryption test (SSL / HTTPS Check) · SSL-Tools and insert the url you are verifying. In our example: thestalkingdirectory.co.uk
....last step is to verify a match between the fingerprint declared to your browser by the connected endpoint also matches the CA-derived official fingerprint for that domain. I will distil into smaller slides in next post...
