Indiana University
University Information Technology Services
  
What are archived documents?
Login>>
Login

Login is for authorized groups (e.g., UITS, OVPIT, and TCC) that need access to specialized Knowledge Base documents. Otherwise, simply use the Knowledge Base without logging in.

Close

When should I use SSL on my web server?

The following list offers situations for which using Secure Sockets Layer (SSL) is appropriate, and can help you decide whether to use SSL on your web server. It is not an exhaustive list, and you may encounter other situations when using SSL would be appropriate.

You should use SSL when transmitting the following types of data:

  • Authentication data (e.g., passwords, session cookies)

  • Data that data stewards have classified as non-public

  • Data that needs to be protected from modification on its way to or from the server (e.g., user input or a result set from the server)

It is important to remember that although SSL can protect the flow of information between your server and a web browser, using SSL does not offer any additional system level security. You must maintain a rigorous security program in order to ensure that your server is secure; see Best practices for computer security.

This is document alwg in domain all.
Last modified on November 21, 2008.

Comments/Questions/Corrections

Use this form to offer suggestions, corrections, and additions to the Knowledge Base. We welcome your input!

If you are affiliated with Indiana University and would like assistance with a specific computing problem, please use the Ask a Consultant form, or contact your campus Support Center.

Contact Information

Note: We will reply to your comment at this address. If your message concerns a problem receiving email, please enter an alternate email address.