|
What is SSL?
Why does Antamedia HotSpot require SSL?
What is required for HotSpot to use a valid certificate and avoid browser warnings?
How much does it cost?
Why is it necessary to use a domain name?
Can't I just use an IP address instead of a domain name?
What's the procedure?
Who provides this service?
What is SSL?
SSL (Secure Sockets Layer) is a security technology that is commonly used for encrypting communications between users and e-commerce websites, thereby securing server to browser transactions. The SSL protocol utilizes encryption to prevent eavesdropping and tampering of the transmitted data, and is used to secure information passed by a browser (such as a customer's credit card number or password) to a webserver (such as the HotSpot server).
Why does Antamedia HotSpot require SSL?
SSL technology is essential in protecting sensitive information (such as credit card numbers) especially in a WIFI hotspot environment where information is passed over unencrypted airways. Antamedia HotSpot ships with a self-signed certificate that provides this protection out of the box. However, this self-signed certificate is not recognized as being issued from a trusted source by web browsers and results in browsers displaying, often alarming, security messages which may drive away customers.
What is required for HotSpot to use a valid certificate and avoid browser warnings?
There are a number of steps involved in obtaining a valid certificate for use with HotSpot including the registration of a domain name, generation of a private RSA key, CSR request with authentication, and configuring the resulting key files for use with HotSpot.
This service has been established to deal with the certificate creation process on your behalf so you can avoid the complexity and get down to the business of running your hotspot.
How much does it cost?
We currently offer three levels of service depending on the domain name requirements. Each service offers the same, industry recognized certificate issued from RapidSSL. Multi-year discounts are also factored into our pricing:
From $60/year (multi-year discount) - HotSpot SSL Certificate with a complimentary third-level domain name under our own (ie. 'yourname.hotspotssl.net'). This is our most popular service and is perfect for those wishing to avoid the complexities of DNS setup.
From $63/year (multi-year discount) - HotSpot SSL Certificate using an existing domain name that you supply (you must be in control and able to configure your own domain name). Perfect for those wishing to utilize an existing name.
From $70/year (multi-year discount) - HotSpot SSL Certificate with dedicated domain name registration (subject to availability). The best choice for those wanting a fully branded hotspot without the complexities of DNS setup.
Prices reflect additional administration costs associated with domain name authentication and/or registration. Please see the order page for terms and conditions.
Why is it necessary to use a domain name?
When a browser connects to a secure site it will retrieve the site's SSL Certificate and check that it has not expired, that it has been issued by a Certification Authority the browser trusts and that it is being used by the website for which it has been issued. If it fails on any one of these checks the browser will display a security warning to the end user. The domain name forms an integral part of the SSL negotiation and provides a means to insure visitors are communicating with an authentic website (not an imposter).
Recognizing the overkill registering a name may represent for the typical hotspot operator, this service provides a complimentary, third-level domain name at no additional cost under the 'hotspotssl.net' domain (ie. 'yourname.hotspotssl.net') for the purpose of certificate registration. Hotspot operators may also use an existing domain name or for an additional fee, register their own domain name for the best possible branding of their hotspot.
Can't I just use an IP address instead of a domain name?
The short answer is NO. While some registration authorities are now advertising IP address based certificates, this is not an option with RapidSSL, our certificate issuer. Because the domain name forms an integral part of the SSL negotiation process, it is highly likely that such certificates would generate errors among different web browsers anyway.
Using a domain name instead of the HotSpot server's IP address adds no additional 'layer' to the HotSpot server and does NOT require a DNS server to opperate from within the LAN. Providing the HotSpot server is connected to the Internet and is able to resolve domain names from external DNS servers (a given with the typical HotSpot deployment), the HotSpot server itself will resolve its own domain name for client machines behind the hotspot.
What's the procedure?
Simply fill out the provided order form. Only the essential information to register a certificate is required. Upon compeletion of the order form, you will be redirected to PayPal to process your payment. Upon receipt of your order/payment, we will immediately begin to process your certificate order and will handle all registration and authentication procedures on your behalf. Your DNS (domain name) details will be configured and you will be emailed within 24 hours* a ZIP file containing your valid SSL files. Simply swap out the old files that came with HotSpot with the new ones and enter your hotspot's domain name to begin offering your customers a fully validated SSL enabled hotspot.
*We aim for a 24 hour turn around (typically much less), however, many factors outside our control may effect the time it takes to process your order. Registering your own domain name or responding to confirmation messages, for example, may increase processing time.
Who provides this service?
This service is provided by Marc Smith Consulting, an Authorized GeoTrust SSL Certifcate Partner based in the UK and USA. As an authorized reseller of SSL certificates under the RapidSSL brand, Marc Smith Consulting is able to pass on discounts to Antamedia HotSpot customers. This allows us to provide a solution specifically tailored for Antamedia HotSpot while maintaining an overall service cost similar and even less than leading certification authorities.
|
