This article describes certificate-based SSL security for Web applications, discusses the benefits of using an internal Certification Authority (CA) versus obtaining certificates from an external CA, and explains the process for setting up a CA server.