Secure Socket Layer (SSL) is an encryption technology. SSL creates an encrypted connection between a web server and a visitor’s web browser allowing for private information to be transmitted without the problems of eavesdropping, data tampering, or message forgery.
To enable SSL on a website, an SSL certificate must be installed on the server. SSL certificates are small data files that digitally bind a cryptographic key to an organization’s details. When an SSL certificate is installed on a website, the information transmitted is secured and only seen by the organization that owns the website. When installed on a web server, it activates the padlock and the https protocol and allows secure connections from a web server to a browser.
SSL certificates bind together:
A domain name, server name or host name.
An organizational identity (company name) and location.
SSL certificates are provided by third party certificate authorities. A certificate authority is an entity that issues digital certificates to organizations after validating them.
Follow these procedures in the order indicated to set up SSL. Completion of these procedures will allow secure communication using a self-signed server certificate.
Creating a keystore file.
Configuring Apache Tomcat to use the keystore file.
Configuring Axis 2 for SSL.
See Related Documentation for links to documentation which provide more information including how to create and install a certificate from a certificate authority.