About Http, Https, And Ssl/Tls; About Certificates - Xerox Phaser 8860 System Administrator Manual

Office printers

Hide thumbs Also See for Phaser 8860:

Service manual (316 pages)

Service documentation (15 pages)

Voluntary product accessibility template (11 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

page of 133

/ 133
Contents
Table of Contents
Bookmarks

Table of Contents

About HTTP, HTTPS, and SSL/TLS

HTTP (Hyper Text Transfer Protocol) is the protocol used to communicate across the internet

between the printer web server and the web browser (clients). Because the data is transmitted

in plain text and passwords are only slightly encrypted, it is not secure; the data can be read or

intercepted by other people.

HTTPS (Secure Hyper Text Transfer Protocol) is a secure version of HTTP. HTTPS provides

authentication and encrypted communication to preserve the confidentiality of your data.

Instead of using plain text, HTTPS uses either the SSL (Secure Socket Layer) protocol or the

TLS (Transport Layer Security) protocol to encrypt data, thus ensuring reasonable protection

from eavesdroppers and man-in-the-middle attacks.

Before using HTTPS, you must set up a certificate and select when to use SSL to encrypt data.

You can set the printer to use SSL either to secure web pages that use passwords or to secure

all web pages.

About Certificates

on page 4-3

Managing Certificates

Configuring SSL

on page 4-7

About Certificates

A certificate is an electronic message containing information about the printer and a digital

signature.

Before configuring passwords, set up a certificate and then configure SSL to encrypt data

including passwords for maximum security. You can set up a self-signed certificate or

download a root-signed certificate, depending on your requirements.

Device Certificates:

A device certificate is stored in the printer and is used to validate the identity of the printer to

clients and network servers and to allow encrypted communication. If you do not install a

device certificate signed by a Certificate Authority (CA), a default self-signed device

certificate is automatically established on the printer when it is needed. A CA signed device

certificate is needed to log into the network when using 802.1X EAP authentication with TLS.

Self-Signed Certificates

Setting up a self-signed certificate is a quick and easy way to establish a certificate on the

printer. The printer automatically generates a default self-signed certificate when the printer is

turned on for the first time. To modify the certificate so it is specific to your printer, use

CentreWare IS to enter information about the location of the printer.

While self-signed certificates are safe for most applications and allow data encryption, they do

not ensure valid authentication. Self-signed certificates are not necessarily secure because the

certificate owner is only confirming his own identify instead of verification by a trusted third

party. Although self-signed certificates encrypt the data that is exchanged, they do not prevent

man-in-the-middle attacks.

on page 4-6

System Administrator Guide

4-3

Basic Concepts

Table of Contents

This manual is also suitable for:

Phaser 8860mfp

About Http, Https, And Ssl/Tls; About Certificates - Xerox Phaser 8860 System Administrator Manual

About HTTP, HTTPS, and SSL/TLS

About Certificates

Related Manuals for Xerox Phaser 8860

Related Content for Xerox Phaser 8860

This manual is also suitable for:

Table of Contents