Secure Socket Layer (SSL)

Secure Socket Layer (SSL)



A normal web application we provide username and password as the required security. This is useful only if your web application is not involving any transaction where in there can be loss to a user using the web application.
Also if a web application is static one, no need to provide a SSL certificate.

But it becomes difficult where in some very important data being processed in a public domain web application such as bank web sites, ecommerce web application etc.


Then it becomes mandatory to use SSL certificate in such high risk web applications.

Creating a Certificate Signing Request (CSR)


Using CA to sign our CSR


Import the CA certificate into the client keystore


Installing signed certificate on Apache tomcat server