I am developing a personal finance application in VB.net, and I am trying to clarify how to properly send a username and password via SSL to a bank's OFX server. Is it sufficient to use the .NET.Security capability to read and authenticate the server's certificate, or do I need to buy a certificate with a formal Certification Authority? Can anybody give me some pointers?