Customer Support Friday, August 08, 2008
     
 

Guarantee


All client transactions at www.toureast.com are secure.

To ensure that every transaction made on www.toureast.com is safe, we use the most advanced encryption technology and back every travel purchase with our Purchase Protection Guarantee. Our secure server encrypts all of client personal information (including name, address, credit card number, travel itinerary) so that it cannot be read as the information travels over the Internet.

 
Tour East Guarantees

The advanced technology employed by www.toureast.com makes it virtually impossible for our users' credit cards information to be used fraudulently. However, in the unlikely event that a user's credit card information is stolen as a result of purchases made on www.toureast.com secure server, the user will be protected by TOUR EAST Purchase Protection Guarantee

Security Provided on www.toureast.com

Secure Socket Layer “SSL”(A LOCK symbol on every secure transaction including client information pages is visible. Encryption www.toureast.com is designed to give our client control over the privacy of their credit card information, name, address, email and any other information client provide us. Tour East offers the industry standard security measures available through client browser called SSL encryption. When client enter payment information, it is captured on a page that uses the SSL protocol by default. To ensure that client credit card information is even more secure, Tour East store it on a server that is not accessible from the Internet and it is protected by latest advance technology (double firewall protection).

Digital Secure Server ID www.toureast.com also uses a Digital Secure Server ID from enTRUST to provide CLIENT with the best possible protection on the Internet.

 
Tour East Web Server Certificates

Tour East Web server certificate is a certificate from entrust that authenticates the identity of Tour East Web site to visiting client/browsers. When a client/browser user wants to send confidential information to Tour East Web server, the browser will access the Tour East server's digital certificate. The certificate, which contains Tour East Web server's public key, will be used by the browser to:
  • authenticate the identity of Tour East Web server(web-site), and
  • encrypt information for the server using Secure Sockets Layer (SSL) technology Since Tour East Web server is the only one with access to its private key, only Tour East server can decrypt the information. This is how the information remains confidential and tamperproof while in transit across the Internet
Understanding Digital Certificates and SSL by “entrust”
Secure Sockets Layer (SSL)

What is SSL?

Secure Sockets Layer (SSL) technology is a security protocol. It is today's de-facto standard for securing communications and transactions across the Internet. SSL has been implemented in all the major browsers and Web servers, and as such plays a major role in today's e-commerce and e-business activities on the Web.

The SSL protocol uses digital certificates to create a secure, confidential communications "pipe" between two entities. Data transmitted over an SSL connection cannot be tampered with or forged without the two parties becoming immediately aware of the tampering.

How Digital Certificates are used in an SSL transaction

Suppose CLIENT-Alice wants to connect to a secure Web site to buy something online:
  • When CLIENT-Alice visits TOUR EAST Web site secured with SSL (typically indicated by a URL that begins with "https:"), her browser sends a "Client Hello" message to the Web server indicating that a secure session (SSL) is requested.
  • TOUR EAST Web server responds by sending CLIENT-Alice it's server certificate (which includes it's public key).
  • CLIENT-Alice's browser will verify that the server's certificate is valid and has been signed by a CA (Certification Authority) whose certificate is in the browser's database (and who CLIENT-Alice trusts). It will also verify that the CA (Certification Authority) certificate has not expired.
  • If the certificates are all valid, CLIENT-Alice's browser will generate a one-time, unique "session" key and encrypt it with the server's public key. Her browser will then send the encrypted session key to the server so that they will both have a copy.
  • The server will decrypt the message using its private key and recover the session key.

At this point CLIENT-Alice can be assured of two things:
  • TOUR EAST Web site she is communicating with is really the one it claims to be (its identity has been verified), and
  • only CLIENT-Alice's browser and the web server have a copy of the session key. 

 
 
     
home | flight | hotels | cars | packages | a' la carte | asian experience | special | destinations |
customer support | privacy policy | online purchase agreement | online booking guarantee | about us | the company | email us |

  Toureast Holidays, Inc., not responsible for content on external Web sites.
 ©2004 Tour East Holidays (Canada) Inc. All rights reserved.