YORGOO: SSL implementation
YORGOO Work in Progress
At present we are implementing an SSL layer to protect our members’ websites in line with Google’s best practices.
What is protected with SSL?
As per Google:
“Encryption: encrypting the exchanged data to keep it secure from eavesdroppers. That means that while the user is browsing a website, nobody can “listen” to their conversations, track their activities across multiple pages, or steal their information.
Data integrity: data cannot be modified or corrupted during transfer, intentionally or otherwise, without being detected.
Authentication: proves that your users communicate with the intended website. It protects against man-in-the-middle attacks and builds user trust, which translates into other business benefits.”
All members’ sites on YORGOO will be protected irrespective of the membership level selected. As SSL certificates are issued on a per domain base, the protection works only for as long as you use your YORGOO URI.
By default we cannot protect mapped domains. However we will offer two solutions:
1. While the front-end of a mapped domain will use http:// links, we can protect the back-end (admin) for as long as you are ready to use the YORGOO sub-domain links for that part of the site.
2. We will install an SSL layer (certificate) for your mapped domain upon your demand at reasonable cost. Ideally we will be able to implement the service for below $20 per year.
The next steps
Subsequent to our tests, we did some adjustments on server and program side and and start with the implementation next week. No downtime is expected.