This FAQ deals with general web security questions as well as specific questions regarding security on CAMEO EZ© web sites.
- What type of security certificate does OmegaNet offer for client web sites?
- How secure is my customer’s credit card information when they place an order?
- Why do I not always see the padlock at the bottom of the screen on CAMEO EZ© sites?
- Why is the padlock sometimes not present, even when the address begins with “https://”?
- Why do I sometimes get a “This page contains both secure and nonsecure items” popup when going to a secure page?
- How secure is my Admin Console?
- Are OmegaNet’s servers protected by firewalls and monitored for security breaches?
- Are OmegaNet’s servers in a secure place?
- The sites which share the Secure Socket Layer (SSL) security certificate in the name of cameoez.com receive security through a certificate from GeoTrust. The certificate uses 256-bit “high-grade encryption”. This is twice the level of security provided by most sites, which are 128-bit encryption. The GeoTrust Logo should appear on the Registration and Checkout pages of your web site. For details regarding the certificate visit the GeoTrust website “https://www.geotrust.com”.
- Not all pages of a web site receive SSL security. Generally only those pages that transfer or display sensitive information, like the Registration and Checkout pages, need to be secure. You can tell if any web page has SSL security by looking at the address bar. If the address begins with “http://”, the page is a standard HTML web page without SSL security. If the address begins with “https://”, the page is protected by SSL security. In Internet Explorer, you may also see a padlock at the bottom right side of the browser window:
This is an additional indication that all the elements of the page are protected by SSL security.
>
- If any elements of the page, such as images, are coming from a location that is not protected by SSL security, the padlock will not show, even though the page is secure. A prime example of this is the thumbnail product images that appear in your shopping cart on the Checkout page. Because they come from your site’s folder and not from a cameoez.com folder they are not covered by SSL security. This may also result in a pop-up warning (see the next question).
- In Internet Explorer, you will sometimes see the popup message pictured below:
This means that the page is secure but that some items, usually images, are not located in secure folders. Usually you only need to click “Yes” and you will see all the images and the page will load correctly, but you may not see the padlock at the bottom of the browser window. You will see “https://” in the address bar, indicating that the page and its information is secure.
- Your Admin Console is protected by your username and password. Credit card information which may be displayed in your Order Manager is encrypted until you need to see it. No one can access your Admin Console and your data without the username and password, so it is very important to protect them. For this reason, OmegaNet will usually select passwords that would be difficult to guess, utilizing numbers as well as letters in random fashion.