Securing Your Embedded Content

From 01 October 2011, Facebook has made it compulsory for all applications and web pages that use Facebook as a platform to have a valid SSL Certificate. This means that all Facebook apps, fan pages and business pages that have content hosted outside of Facebook must use a secure encrypted link.

Facebook Security Information

In an effort to make Facebook a more secure platform for users, Facebook introduced the ability for users to browse Facebook over HTTPS. Today over 10 million people are browsing Facebook over HTTPS and with the trend is continuing to increase, Facebook has now made it mandatory for developers to serve their apps through an HTTPS connection and for owners of business and fan pages to ensure any external content served through Facebook is also served through an HTTPS connection.

What Do The New Facebook SSL Requirements Mean For Developers

As part of Facebook efforts to make the platform more secure, they have completed transitioning apps from the old Facebook authentication system and HTTP to OAuth 2.0 (an open standard co-authored with Yahoo, Twitter, Google, and others) and HTTPS. If you are a developer you must read updates to Facebook Developer Roadmap that outlines how all sites and apps can adhere to OAuth 2.0 requirements.

What Do The New SSL Requirements Mean For The Business Owner

If your Facebook business or fan page contains embedded content from your website, you will need an SSL Certificate for your website, and any links on your Facebook page that link to your website will need to be updated to reflect the https:// website address once you have purchased and installed an SSL Certificate.

What Is A Facebook SSL Certificate

SSL stands for Secure Socket Layer and is an encryption technology which establishes a secure session between a web browser (such as Internet Explorer or Safari) or web-based platform (such as Facebook) and a secure website. An SSL Certificate ensures that any information transmitted during this session is encrypted and secure. The address of a website that has an SSL Certificate will start with https:// and is issued by a Certification Authority.

What Is The Difference Between HTTP & HTTPS

If you visit a website and look at the address in the web browser, it will likely begin with http:// which means that the website is transmitting information to your browser using unencrypted language. This means that anyone can intercept and read information that is transmitted between your web browser and the website.

If the web address begins with https:// it means that your computer is talking to the website securely using encrypted code that no one can read. You should never enter sensitive information on a website that has not been secured.

Get An SSL Certificate To Meet Facebook Requirements

All of the SSL Certificates found on the Trustico® website meets Facebook requirements for SSL encryption. Our SSL Certificates offer the highest levels of encryption available from any SSL Certificate Authority.