Not all data needs to be encrypted when processing information only the sensitive data. SSL certificates
applied to a website are essential to encrypting sensitive data when sharing information with a website.
But if you read SSL Myths it is obvious that SSL certs may encrypt data from client to web server. What
about data that is stored in sessions and in static files on the web server.
WebSafe will test for Data Encryption:
A WebSafe technician will assess the website and use methods designed to by-pass simple encryption mechanisms.
This must be done by a technician in order to determine the need for encryption for the particular web page
being tested.