SSL Encryption

Entrust’s Hybrid 256-bit and 2048-bit Key SSL Certificate Encryption

The SSL (Secure Sockets Layer) protocol secures the connection between a customer’s browser and a server. After the connection is made, all of the information transmitted between the browser and the server is encrypted and private.

Your website’s security is our number one priority. And we know that your customers’ confidence is crucial to increasing your online sales.

That’s why Entrust SSL certificates feature hybrid 256-bit pre-shared and 2048-bit public key encryption in our root certificates. With support for SHA-1 and SHA-2 algorithms, Entrust SSL Certificates protect your data by offering security that benefits from the best features of both symmetric and asymmetric encryption.

What does symmetric and asymmetric encryption mean?

Symmetric SSL encryption (or pre-shared key encryption) uses a single key to both encrypt and decrypt data. Both the sender and the receiver need the same key to communicate. Symmetric key sizes are typically 128 or 256 bits—the larger the key size, the harder the key is to crack.

Diagram Illustrating Symmetric Encryption

Asymmetric SSL encryption (or public-key cryptography) uses a separate key for encryption and decryption. Anyone can use the encryption key (public key) to encrypt a message. However, decryption keys (private keys) are secret. This way only the intended receiver can decrypt the message. The most common asymmetric encryption algorithm, and the algorithm Entrust uses, is RSA.

Asymmetric keys are typically 1024 or 2048 bits. Keys smaller than 2048 bits are no longer considered safe to use.

Diagram Illustrating Asymmetric Encryption

256-Bit AES Encrypted Certificates meet Government Requirements

Many consumers are still wary about using the internet for transactional purposes. They have good reason. In recent years faulty security has too often led to sensitive data being stolen and shared publicly.

256-bit encryption key in binary is equivalent to a 78 digit number using decimal digits. A hacker will need to try 2256 different combinations to break into a message or file—which is virtually impossible to do even with the fastest computers. 256-bit encryption is implemented by the government to protect mission-critical information—meaning that it is the industry-standard for encrypting all sensitive data – including financial, enterprise, and government-owned information.

2048-Bit SSL Certificate Integrity

Your customers might not know what 2048-Bit SSL Certificates are, but they know what it means when a site says it has a secure server.

A 2048-bit key encryption key in binary is equivalent to a 617-digit number using decimal digits. A hacker will need to try 22048 different combinations to hack into your secured website. Barring any unforeseen advances in quantum computing, websites hosted using 2048-bit key encrypted SSL certificates will be secure for up to a decade or longer. That’s why Entrust uses 2048-bit key encryption. It means we are committed to providing the highest level of security available, and that our certified websites can be trusted.

The Entrust Trustworthy Seal

Properly managed, multi-server certificates can provide increased flexibility. However, they also decrease SSL Security and increase the probability of eavesdrop and impersonation attacks. Entrust recommends using proper safeguards when deploying multi-server certificates.

Learn more about the Entrust Trustworthy Seal

Icon_SSL BP lockup


Need Help Deciding?