A GRO Project SSL Certificate helps you build an impenetrable fortress around your customers' credit card information.

A GRO Project SSL Certificate provides an easy, costeffective and secure means to protect customer information and build trust. An SSL Certificate enables Secure Sockets Layer (SSL) encryption of your business' online transactions, allowing you to build an impenetrable fortress around your customers' credit card information.

GRO Project SSL certificates bring the highest level of trust to your online business. A GRO Project SSL Certificate ensures that all sensitive transactions are kept securely encrypted and safe from prying eyes, and rigorous authentication guarantees that GRO Project certificates are issued only to entities whose existence and domains can be verified.

Up to 256Bit Encryption

GRO Project SSL certificates support both industrystandard 128bit (used by all banking infrastructures to safeguard sensitive data) and highgrade 256bit SSL encryption to secure online transactions. The actual encryption strength on a secure connection using a digital certificate is determined by the level of encryption supported by the user's browser and the server that the Web site resides on. For example, the combination of a Firefox browser and an Apache 2.X Web server enables up to 256bit AES encryption with GRO Project certificates.

Encryption strength is measured in key length - number of bits in the key. To decipher an SSL communication, one needs to generate the correct decoding key. Mathematically speaking, 2ⁿ possible values exist for an nbit key. Thus, 40bit encryption involves 2⁴⁰ possible values. 128and 256bit keys involve a staggering 2¹²⁸ and 2²⁵⁶ possible combinations, respectively, rendering the encrypted data de facto impervious to intrusion. Even with a bruteforce attack (the process of systematically trying all possible combinations until the right one is found) cracking a 128or 256bit encryption is computationally unfeasible.

Public and Private Keys

When you create a CSR, the Web server software with which the request is being generated creates two unique cryptographic keys: A public key, which is used to encrypt messages to your (i.e., the certificate holder's) server and is contained in your certificate, and a private key, which is stored on your local computer and "decrypts" the secure messages so they can be read by your server. In order to establish an encrypted link between your Web site and your customer's Web browser your Web server will match your issued SSL certificate to your private key. Because only the Web server has access to its private key, only the server can decrypt SSLencrypted data.