{"id":17412,"date":"2020-05-07T00:01:19","date_gmt":"2020-05-06T21:01:19","guid":{"rendered":"https:\/\/www.gpec.ro\/blog\/?p=17412"},"modified":"2020-05-18T17:38:51","modified_gmt":"2020-05-18T14:38:51","slug":"rolul-certificatului-de-securitate-pentru-magazinele-online","status":"publish","type":"post","link":"https:\/\/www.gpec.ro\/blog\/rolul-certificatului-de-securitate-pentru-magazinele-online","title":{"rendered":"Rolul certificatului de securitate pentru magazinele online"},"content":{"rendered":"<div class=\"fcbkbttn_buttons_block\" id=\"fcbkbttn_left\"><div class=\"fcbkbttn_like \"><div class=\"fb-like fb-like-button_count\" data-href=\"https:\/\/www.gpec.ro\/blog\/rolul-certificatului-de-securitate-pentru-magazinele-online\" data-colorscheme=\"light\" data-layout=\"button_count\" data-action=\"like\"  data-size=\"small\"><\/div><\/div><\/div><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-17419 size-full\" src=\"https:\/\/www.gpec.ro\/blog\/wp-content\/uploads\/2020\/05\/gpec_blog_Cristian-Iosub3.png\" alt=\"\" width=\"2048\" height=\"1172\" srcset=\"https:\/\/www.gpec.ro\/blog\/wp-content\/uploads\/2020\/05\/gpec_blog_Cristian-Iosub3.png 2048w, https:\/\/www.gpec.ro\/blog\/wp-content\/uploads\/2020\/05\/gpec_blog_Cristian-Iosub3-300x172.png 300w, https:\/\/www.gpec.ro\/blog\/wp-content\/uploads\/2020\/05\/gpec_blog_Cristian-Iosub3-768x440.png 768w, https:\/\/www.gpec.ro\/blog\/wp-content\/uploads\/2020\/05\/gpec_blog_Cristian-Iosub3-1024x586.png 1024w\" sizes=\"auto, (max-width: 2048px) 100vw, 2048px\" \/><\/p>\n<p><strong>Continu\u0103m seria articolelor semnate de Cristian Iosub despre securitate online cu o privire \u00een detaliu asupra certificatelor SSL \u0219i importan\u021ba acestora, cu prec\u0103dere \u00een cazul magazinelor online. Afl\u0103m care este rolul lor, cum func\u021bioneaz\u0103 \u0219i care sunt diferen\u021bele dintre un certificat de securitate gratuit \u0219i unul pl\u0103tit.<\/strong><\/p>\n<p><!--more--><\/p>\n<p><span style=\"font-weight: 400;\">Certificatele SSL joac\u0103 un rol important \u00een securitate pentru un magazin online. Un certificat <\/span><b>Secure Sockets Layer<\/b><span style=\"font-weight: 400;\"> (certificat SSL, cunoscut popular sub denumirea generic\u0103 de certificat de securitate) este un mic fi\u0219ier de date instalat pe un server web care permite o conexiune sigur\u0103 \u00eentre server \u0219i un browser web.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Certificatele SSL pot fi utilizate de c\u0103tre magazinele online care doresc <\/span><b>s\u0103 cripteze tranzac\u021biile cu carduri de credit<\/b><span style=\"font-weight: 400;\">, s\u0103 efectueze transferuri de date, s\u0103 proceseze autentific\u0103ri \u0219i s\u0103 g\u0103zduiasc\u0103 site-uri web securizate de social media. Bazat pe protocolul Secure Sockets Layer dezvoltat de Netscape (dac\u0103 v\u0103 aduce\u021bi aminte de Netscape suntem am\u00e2ndoi \u00een categorie de risc &#x1f60a;), certificatele SSL folosesc o cheie criptografic\u0103 pentru a furniza validarea pentru un server web, \u00een care sunt detaliate numele de domeniu, numele serverului, numele site-ului, numele companiei \u0219i loca\u021bia. Majoritatea certificatelor SSL de ast\u0103zi accept\u0103, de asemenea, protocolul Transport Layer Security (TLS), care este considerat a fi mai sigur dec\u00e2t SSL.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Certificatele SSL sunt emise de la o autoritate de certificare de \u00eencredere. Exist\u0103 <strong>trei tipuri de certificate<\/strong>:\u00a0<\/span><\/p>\n<ul>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">certificate SSL de validare extins\u0103 (EV)\u00a0<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">certificate SSL de validare a organiza\u021biei (OV)\u00a0<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">certificate SSL de validare a domeniului (DV)\u00a0<\/span><\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">C\u00e2nd un certificat SSL este instalat pe un server, acesta activeaz\u0103 protocolul HTTPS peste portul 443. Utilizarea unui certificat SSL pe un site web este de obicei indicat\u0103 de o pictogram\u0103 cu lac\u0103t micu\u021b \u0219i de o adres\u0103 URL care \u00eencepe cu <\/span><i><span style=\"font-weight: 400;\">https:\/\/<\/span><\/i><span style=\"font-weight: 400;\">.<\/span><\/p>\n<h2><b>SSL cripteaz\u0103 informa\u021bii sensibile<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">Motivul principal pentru care se folose\u0219te SSL este <\/span><b>p\u0103strarea criptat\u0103 a informa\u021biilor sensibile<\/b><span style=\"font-weight: 400;\"> pe Internet, astfel \u00eenc\u00e2t doar destinatarul de drept s\u0103 poat\u0103 avea acces la informa\u021bia transmis\u0103. Acest lucru este important deoarece informa\u021biile pe care clien\u021bii dumneavoastr\u0103 le trimit pe Internet sunt transmise de la computer la computer pentru a ajunge la serverul de destina\u021bie. Orice computer \u00eentre client \u0219i server v\u0103 poate vedea \/ intercepta seria cardului de credit, numele de utilizator \u0219i parolele \u0219i alte informa\u021bii sensibile dac\u0103 nu este criptat cu un certificat SSL. C\u00e2nd se folose\u0219te un certificat SSL, informa\u021biile devin nelegibile tuturor, cu excep\u021bia serverului la care trimite\u021bi informa\u021biile.<\/span><span style=\"font-weight: 400;\">\u00a0<\/span><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-17414 \" src=\"https:\/\/www.gpec.ro\/blog\/wp-content\/uploads\/2020\/05\/17-sucuri-a-ssl-http-vs-https-chart@2.png\" alt=\"\" width=\"597\" height=\"362\" srcset=\"https:\/\/www.gpec.ro\/blog\/wp-content\/uploads\/2020\/05\/17-sucuri-a-ssl-http-vs-https-chart@2.png 470w, https:\/\/www.gpec.ro\/blog\/wp-content\/uploads\/2020\/05\/17-sucuri-a-ssl-http-vs-https-chart@2-300x182.png 300w\" sizes=\"auto, (max-width: 597px) 100vw, 597px\" \/><\/p>\n<h2><b>SSL ofer\u0103 autentificare<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">\u00cen plus fa\u021b\u0103 de criptare, un certificat SSL corespunz\u0103tor ofer\u0103 \u0219i <\/span><b>autentificare<\/b><span style=\"font-weight: 400;\">. Aceasta \u00eenseamn\u0103 c\u0103 pute\u021bi fi sigur c\u0103 sunt trimise informa\u021biile din partea clientului c\u0103tre serverul potrivit \u0219i nu c\u0103tre un impostor care \u00eencearc\u0103 s\u0103 \u00eei fure informa\u021biile. De ce este important acest lucru? Natura Internetului \u00eenseamn\u0103 c\u0103 clien\u021bii dumneavoastr\u0103 vor trimite adesea informa\u021bii prin mai multe calculatoare. Oricare dintre aceste computere s-ar putea preface c\u0103 este site-ul dumneavoastr\u0103 \u0219i poate p\u0103c\u0103li utilizatorii s\u0103 \u00eei transmit\u0103 informa\u021bii personale. Este posibil s\u0103 evita\u021bi acest lucru numai ob\u021bin\u00e2nd un certificat SSL de la un furnizor SSL de \u00eencredere.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u00a0<\/span><i><span style=\"font-weight: 400;\">De ce sunt importan\u021bi furnizorii SSL?<\/span><\/i><span style=\"font-weight: 400;\"> Furnizorii SSL de \u00eencredere vor emite un certificat SSL numai unei companii verificate care a trecut prin mai multe verific\u0103ri de identitate. Anumite tipuri de certificate SSL, cum ar fi certificatele SSL EV, necesit\u0103 mai mult\u0103 validare dec\u00e2t altele.<\/span><\/p>\n<h2><b>SSL ofer\u0103 \u00eencredere<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">Browserele ofer\u0103 indicii vizuale, cum ar fi o pictogram\u0103 de blocare sau o bar\u0103 verde, pentru a se asigura c\u0103 vizitatorii \u0219tiu c\u00e2nd conexiunea lor este securizat\u0103. Aceasta \u00eenseamn\u0103 c\u0103 vor avea mai mult\u0103 \u00eencredere \u00een magazinul dumneavoastr\u0103 atunci c\u00e2nd vor vedea aceste indicii \u0219i vor avea mai multe \u0219anse s\u0103 cumpere de la dumneavoastr\u0103. Furnizorii SSL v\u0103 vor oferi, de asemenea, un sigiliu de \u00eencredere care va genera mai mult\u0103 \u00eencredere clien\u021bilor.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">C\u00e2\u021biva <\/span><b>furnizori de certificate de securitate<\/b><span style=\"font-weight: 400;\"> sunt: <a href=\"https:\/\/www.ssls.com\" target=\"_blank\" rel=\"noopener noreferrer\">SSLS<\/a><\/span><span style=\"font-weight: 400;\">, <a href=\"https:\/\/comodosslstore.com\" target=\"_blank\" rel=\"noopener noreferrer\">Comodo<\/a><\/span><span style=\"font-weight: 400;\">, <a href=\"https:\/\/www.rapidssl.com\" target=\"_blank\" rel=\"noopener noreferrer\">RapidSSL<\/a> <\/span><span style=\"font-weight: 400;\">sau chiar propriul furnizor de servicii de g\u0103zduire. \u00cen general, chiar \u0219i companiile de hosting locale intermediaz\u0103 achizi\u021bia de certificate de securitate ac\u021bion\u00e2nd ca un reseller.<\/span><span style=\"font-weight: 400;\">\u00a0<\/span><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-17413\" src=\"https:\/\/www.gpec.ro\/blog\/wp-content\/uploads\/2020\/05\/753-1024x853.jpg\" alt=\"\" width=\"552\" height=\"460\" \/><\/p>\n<h2><b>SSL este necesar pentru conformitate PCI<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">Pentru a accepta informa\u021biile despre cardul de credit pe site-ul dumneavoastr\u0103, trebuie s\u0103 trece\u021bi anumite <\/span><b>audituri<\/b><span style=\"font-weight: 400;\"> care arat\u0103 c\u0103 respecta\u021bi standardele din industria cardurilor de plat\u0103 (PCI). Una dintre cerin\u021be este utilizarea corect\u0103 a unui certificat SSL.<\/span><\/p>\n<h2><b>Google vs Certificatele de securitate<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">Google a anun\u021bat \u00een urm\u0103 cu c\u00e2\u021biva ani faptul c\u0103, \u00eencep\u00e2nd cu 01 ianuarie 2017, va penaliza paginile web nesecurizate cu certificat SSL \u0219i la scurt timp Firefox s-a al\u0103turat ini\u021biativei. \u00cen prim\u0103 faz\u0103, aceste site-uri au fost marcate cu ro\u0219u \u201eNOT SECURE\u201d \u00een dreptul numelui de domeniu. Ulterior, de\u021bin\u00e2nd o cot\u0103 dominant\u0103 de pia\u021b\u0103 ca motor de c\u0103utare, Google a penalizat site-urile ce nu aveau instalat un certificat de securitate.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u00cen prezent penalizarea prin sc\u0103derea pozi\u021biei pe care un site este indexat s-a extins \u0219i spre site-urile ce nu sunt <\/span><b>optimizate mobile<\/b><span style=\"font-weight: 400;\">. Personal, a\u0219 dori s\u0103 cred c\u0103 certificatele de securitate au ca scop primar utilizarea \u00een vederea cript\u0103rii datelor \u00eentre client \u0219i magazinul online, dar majoritatea aleg s\u0103 instaleze acest certificat doar pentru c\u0103 ar exista posibilitatea de a fi penaliza\u021bi de c\u0103tre motoarele de c\u0103utare.<\/span><\/p>\n<h2><b>Dezavantajele SSL<\/b><\/h2>\n<p><span style=\"font-weight: 400;\">Cu at\u00e2t de multe avantaje, de ce nu ar folosi cineva SSL? Exist\u0103 dezavantaje \u00een utilizarea certificatelor SSL? Costul este un dezavantaj evident. Furnizorii SSL trebuie s\u0103 creeze o infrastructur\u0103 de \u00eencredere \u0219i s\u0103 v\u0103 valideze identitatea, astfel \u00eenc\u00e2t s\u0103 existe un cost. Acest lucru a fost atenuat de concuren\u021ba crescut\u0103 \u00een industrie \u0219i de introducerea de furnizori precum <a href=\"https:\/\/letsencrypt.org\/\" target=\"_blank\" rel=\"noopener noreferrer\">Let&#8217;s Encrypt<\/a>.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">\u00cen general, dezavantajele utiliz\u0103rii SSL sunt pu\u021bine \u0219i avantajele le dep\u0103\u0219esc cu mult. Este esen\u021bial s\u0103 utiliza\u021bi corect SSL pe toate magazinele online. Utilizarea corect\u0103 a certificatelor SSL v\u0103 va ajuta s\u0103 v\u0103 proteja\u021bi clien\u021bii, s\u0103 v\u0103 protejeze \u0219i s\u0103 v\u0103 ajute s\u0103 v\u0103 c\u00e2\u0219tiga\u021bi \u00eencrederea \u0219i s\u0103 vinde\u021bi mai mult.<\/span><\/p>\n<h2><b>Mituri<\/b><\/h2>\n<p><b>Mit: <\/b><em><span style=\"font-weight: 400;\">Dac\u0103 am instalat un certificat de securitate, magazinul online este protejat \u00eempotriva atacurilor cibernetice.<\/span><\/em><\/p>\n<p><b>Adev\u0103r:<\/b><span style=\"font-weight: 400;\"> Este important de re\u021binut faptul c\u0103 un certificat de securitate asigur\u0103 numai criptarea informa\u021biilor \u00eentre browserul clientului \u0219i serverul pe care este g\u0103zduit magazinul online. Absolut toate vulnerabilit\u0103\u021bile descrise \u00een <a href=\"https:\/\/www.gpec.ro\/blog\/author\/cristian-iosub\" target=\"_blank\" rel=\"noopener noreferrer\">articolele precedente<\/a> sunt \u00een continuare valabile.<\/span><\/p>\n<p><b>Mit:<\/b><em><span style=\"font-weight: 400;\"> Let\u2019s Encrypt ofer\u0103 certificate de securitate gratuit \u0219i sunt la fel de bune ca unul pe care am pl\u0103tit 10 dolari.<\/span><\/em><\/p>\n<p><b>Adev\u0103r:<\/b><span style=\"font-weight: 400;\"> Exist\u0103 unele certificate SSL gratuite precum Let\u2019s Encrypt, dar acestea ofer\u0103 cea mai mic\u0103 protec\u021bie. Acestea sunt ad\u0103ugate \u00een mare parte pentru a respecta politica Google. Deoarece toate site-urile ar trebui s\u0103 aib\u0103 acest nivel suplimentar de securitate.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Let&#8217;s Encrypt este o autoritate de certificare gratuit\u0103, dezvoltat\u0103 de c\u0103tre <a href=\"https:\/\/www.abetterinternet.org\/\" target=\"_blank\" rel=\"noopener noreferrer\">Internet Security Research Group<\/a> (ISRG), o organiza\u021bie non-profit. O s\u0103 vede\u021bi destul de mult, atunci c\u00e2nd compara\u021bi dou\u0103 certificate de securitate, expresiile <\/span><i><span style=\"font-weight: 400;\">Very high assurance<\/span><\/i><span style=\"font-weight: 400;\">, <\/span><i><span style=\"font-weight: 400;\">Medium assurance<\/span><\/i><span style=\"font-weight: 400;\">, <\/span><i><span style=\"font-weight: 400;\">Low assurance<\/span><\/i><span style=\"font-weight: 400;\">. \u00cen practic\u0103, autoritatea emitent\u0103 garanteaz\u0103 c\u0103 datele nu vor putea fi interceptate prin certificatul de securitate \u0219i dac\u0103 acest lucru va fi totu\u0219i posibil, atunci va desp\u0103gubi magazinul online cu sume de 10.000 euro (Essential SSL de la ssls.com) p\u00e2n\u0103 la 2 milioane de euro (EV SSL tot de la ssls.com). Utiliz\u00e2nd \u00eens\u0103 un certificat de tipul Let\u2019s Encrypt, aceste desp\u0103gubiri nu vor fi posibile. \u00cen plus, exist\u0103 incompatibilit\u0103\u021bi \u00eentre certificatele Let\u2019s Encrypt \u0219i comunicarea cu sistemele interne ale diverselor solu\u021bii software (prin API, servicii web etc.).<\/span><\/p>\n<p>&nbsp;<\/p>\n<hr \/>\n<p><strong><img loading=\"lazy\" decoding=\"async\" class=\" wp-image-16827 alignleft\" src=\"https:\/\/www.gpec.ro\/blog\/wp-content\/uploads\/2020\/02\/cristi-iosub-944x1024.jpg\" sizes=\"auto, (max-width: 212px) 100vw, 212px\" srcset=\"https:\/\/www.gpec.ro\/blog\/wp-content\/uploads\/2020\/02\/cristi-iosub-944x1024.jpg 944w, https:\/\/www.gpec.ro\/blog\/wp-content\/uploads\/2020\/02\/cristi-iosub-277x300.jpg 277w, https:\/\/www.gpec.ro\/blog\/wp-content\/uploads\/2020\/02\/cristi-iosub-768x833.jpg 768w\" alt=\"cristi iosub\" width=\"212\" height=\"229\" \/>Cristian Iosub<\/strong><\/p>\n<p><em><strong>Digital Platforms Manager\u00a0<a href=\"https:\/\/www.conversion.ro\/\">Conversion Marketing<\/a><\/strong><\/em><\/p>\n<p><a href=\"https:\/\/www.linkedin.com\/in\/iosubcristian\/\" target=\"_blank\" rel=\"noopener noreferrer\">Cristian Iosub<\/a>\u00a0este Digital Platforms Manager la Conversion \u0219i are o experien\u021b\u0103 de peste 15 ani \u00een dezvoltare software si auditor pentru sistemul de management al securit\u0103\u021bii informa\u021biei. Cu numeroase proiecte la activ, Cristian a coordonat \u0219i a dezvoltat software pentru peste 100 de clien\u021bi internationali din domenii precum eCommerce, Banking \u0219i Retail.<\/p>\n<p>Pe l\u00e2ng\u0103 proiectele pe care le coordoneaz\u0103, Cristian administreaz\u0103 principalele platforme dezvoltate de Conversion. Mai exact: Profitshare, platforma de marketing afiliat cu cele mai mari v\u00e2nz\u0103ri din Rom\u00e2nia, Conectoo, platforma de email marketing, prin care se trimit lunar in inbox peste 150.000.000 emailuri si CookieBox, platforma de management a cookie-urilor.<\/p>\n<p>&nbsp;<\/p>\n<hr \/>\n<p>Nu rata seria de articole cu con\u021binut #CraftedToInspire semnate de speciali\u0219ti \u00een eCommerce \u0219i Digital Marketing, aboneaz\u0103-te la\u00a0<a href=\"https:\/\/www.gpec.ro\/aboneaza-te-la-newsletter-ul-gpec\/\">Newsletter-ul GPeC<\/a>!<\/p>\n","protected":false},"excerpt":{"rendered":"<div class=\"fcbkbttn_buttons_block\" id=\"fcbkbttn_left\"><div class=\"fcbkbttn_like \"><div class=\"fb-like fb-like-button_count\" data-href=\"https:\/\/www.gpec.ro\/blog\/rolul-certificatului-de-securitate-pentru-magazinele-online\" data-colorscheme=\"light\" data-layout=\"button_count\" data-action=\"like\"  data-size=\"small\"><\/div><\/div><\/div><p>Continu\u0103m seria articolelor semnate de Cristian Iosub despre securitate online cu o privire \u00een detaliu asupra certificatelor SSL \u0219i importan\u021ba acestora, cu prec\u0103dere \u00een cazul magazinelor online. Afl\u0103m care este rolul lor, cum func\u021bioneaz\u0103 \u0219i care sunt diferen\u021bele dintre un certificat de securitate gratuit \u0219i unul pl\u0103tit.<\/p>\n","protected":false},"author":27,"featured_media":17419,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3459],"tags":[3719,3511,3461,3463],"class_list":["post-17412","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","tag-certificat-de-securitate","tag-certificate-ssl","tag-cristian-iosub","tag-online-security"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.gpec.ro\/blog\/wp-json\/wp\/v2\/posts\/17412","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.gpec.ro\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.gpec.ro\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.gpec.ro\/blog\/wp-json\/wp\/v2\/users\/27"}],"replies":[{"embeddable":true,"href":"https:\/\/www.gpec.ro\/blog\/wp-json\/wp\/v2\/comments?post=17412"}],"version-history":[{"count":3,"href":"https:\/\/www.gpec.ro\/blog\/wp-json\/wp\/v2\/posts\/17412\/revisions"}],"predecessor-version":[{"id":17420,"href":"https:\/\/www.gpec.ro\/blog\/wp-json\/wp\/v2\/posts\/17412\/revisions\/17420"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.gpec.ro\/blog\/wp-json\/wp\/v2\/media\/17419"}],"wp:attachment":[{"href":"https:\/\/www.gpec.ro\/blog\/wp-json\/wp\/v2\/media?parent=17412"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.gpec.ro\/blog\/wp-json\/wp\/v2\/categories?post=17412"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.gpec.ro\/blog\/wp-json\/wp\/v2\/tags?post=17412"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}