Step 1: A customer makes a connection to domain.com on an SSL port, typically 443. This connection is denoted with https instead of http.

Step 2: domain.com sends back its public key to the customer. Once customer receives it, his/her browser decides if it is al-right to proceed.

• The domain.com public key must NOT be expired
• The domain.com public key must be for domain.com only
• The client must have the public key for Third Party SSL issuer, installed in their browser certificate store. 99.9% of all modern browsers (1998+) include the most of the Third Party SSL issuer’s root certificate. If the customer has hird Party SSL issuer’s trusted public key, then they can trust that they are really communicating with Domain, Inc.

Step 3: If the customer decides to trust the certificate, then the customer will be sent to domain.com his/her public key.

Step 4: domain.com will next create a unique hash and encrypt it using both the customer’s public key and domain.com‘s private key, and send this back to the client.

Step 5: Customer’s browser will decrypt the hash. This process shows that the domain.com sent the hash and only the customer is able to read it.

Step 6: Customer and website can now securely exchange information.

If you require help, contact SupportPRO Server Admin