What is an SSL / TLS certificate used for?
A certificate SSL (Secure Sockets Layer) or TLS (Transport Layer Security), which is its modern successor, is a digital data file that binds a cryptographic key to an organization's information. Once installed on a web server, it activates the padlock and the protocol HTTPS, thus ensuring secure connections from the server to the user's browser.
The use of SSL/TLS certificates meets two major cybersecurity objectives:
- Privacy (Encryption): The data exchanged between the visitor and the site (passwords, banking details) are encrypted and cannot be read by a third party.
- Authentication (Identity): The certificate guarantees that the site with which the Internet user communicates is indeed who it claims to be, thus protecting against identity theft and phishing.
The different types of certificates (DV, OV, EV)
All certificates offer the same level of encryption, but they differ in the level of verification of the identity of the applicant (Validation) carried out by the Certification Authority (CA).
1. Domain Validation (DV)
The Certification Authority only verifies that the applicant has control of the domain name. This is the most basic level (eg: Let's Encrypt), often delivered automatically in a few minutes.
2. Organization Validation (OV)
In addition to controlling the domain, the CA verifies the legal, physical and operational existence of the company or association. The organization information appears in the certificate details.
3. Extended Validation (EV)
This is the highest level of trust. It requires a rigorous audit of the organization according to strict guidelines. Ideal for banks, e-commerce and institutions.
The role of ANRDI in digital certification
The National Association for Domain and Internet Regulation promotes the use of high-level assurance certificates (OV and EV) for entities handling sensitive data. ANRDI also issues specific attestations and certificates of conformity for organizations complying with its cybersecurity standards.
To verify the authenticity of a digital proof or certificate issued by ANRDI, a public verification tool is made available to trusted third parties and the general public.