Skip to content »
ITS and UVa logos for printed output

Secure Server Certificates

Overview

What is a Secure Server Certificate?

A secure server certificate (not to be confused with a personal certificate) is a digital certificate issued to a Web server by a trusted certification service known as a Certificate Authority (CA). A server certificate verifies the organization's identity to the client so that the client can securely browse the organization's Web site confident that:

  1. the Web site belongs to said organization (not an imposter), and
  2. transactions between the server and client are encrypted.

A protocol known as Secure Sockets Layer (SSL) is most commonly used to encrypt information sent across the Internet. Secure server certificates allow Web servers to establish SSL sessions with Web browsers.

How to Get a Secure Server Certificate

As of fall 2010, ITS is making commercial SSL server certificates for any UVa-owned domain available at no cost to university departments. (Previously, ITS offered SSL server certificates from www.pki.virginia.edu that were free but not trusted outside of UVa. The commercial SSL server certificates are trusted globally.) All servers in the virginia.edu domain qualify for this service, as do servers in other domains which have been purchased by UVa departments or groups. Certificates for servers in domains other than virginia.edu will take longer to obtain, as UVa must first request approval to include the domain in the InCommon Certificate Service as a UVa domain, before we may get certificates for the domain.

The InCommon Federation, operated by Internet2, is an organization created by and for the higher education community. The mission of the InCommon Federation is to support a framework of trustworthy access to online education and research resources. InCommon is partnering with Comodo CA Ltd., a major commercial Certificate Authority and member of Internet2, to offer this certificate service. Comodo certificates are widely trusted by all common Web browsers.

The InCommon Certificate Service leverages the buying power of InCommon and Internet2 to provide a cost-effective commercial SSL certificate service to its members. The service provides campus members with an unlimited number of SSL certificates for a fixed annual fee. ITS elected to fund the membership fee centrally, effectively making SSL server certificates free to departments for any domain name owned by the university.

ITS encourages the use of Comodo/InCommon server certificates. Secure server certificates from other commercial certificate services (such as VeriSign, GeoTrust, etc.) may still be used as long as the department funds all of the associated costs to obtain a non-InCommon certificate.

To request a secure SSL server certificate for your Web server, write to SecureServerCertificate@virginia.edu.

Page Updated: 2012-02-16

Standards & Policy

University of Virginia
Information Technology Services
2015 Ivy Road
P.O. Box 400324
Charlottesville, Virginia, 22904-4324 USA

UVa Help Desk: 434-924-HELP (434-924-4357) • 4help@virginia.edu

Page Updated: 2012-02-16; © 2014 by the Rector and Visitors of the University of Virginia.

The information contained on the University of Virginia’s Department of Information Technology Services (ITS) website is provided as a public service with the understanding that ITS makes no representations or warranties, either expressed or implied, concerning the accuracy, completeness, reliability or suitability of the information, including warrantees of title, non-infringement of copyright or patent rights of others. These pages are expected to represent the University of Virginia community and the State of Virginia in a professional manner in accordance with the University of Virginia’s Computing Policies.