The SSL (Secure Socket Layer) allows a safe and private exchange of information. With SSL, the communications and data such as personal information sent between the users and the websites will be kept confidential in an encrypted format, so they cannot be eavesdropped or tampered with across the internet. It gives your customers the confidence to trust and to safely transact with your websites.
The right SSL certificate for you depends on the amount of assurance your customers need and the basic level of encryption your organization requires.
Web Server Certificate
|Key Size||Time to Crack|
|128-bit||1.02 x 1018 years|
|192-bit||1.872 x 1037 years|
|256-bit||3.31 x 1056 years|
The SSL certificates can provide three types of validation to a website which authenticate the legitimacy of the website, with SSL, a website can be either Domain Validated (DV), Organization Validated (OV) or Extended Validated (EV).
DV Certificates (Domain Validation) Domain validated or DV certificate is the most basic type of SSL certificate. All it takes for a website to be domain verified is getting the domain name checked against the domain registry. This process can be done almost instantly. It is recommended to choose DV certificates when there is already an established trust between the organization and its customers & employees. It is definitely better than no SSL at all, but some may not trust a DV certificate especially when it comes to the billing section.
OV Certificates (Organization Validation) Organization Validated or OV Certificate are only given to websites if the applicant has the right to the domain name and that the organizations are legitimate after it is verified against the governments’ business registry. At the URL search bar, DV & OV looks the same, with both having a padlock icon appearing before the address. But, if clicked on the padlock, one can view the certificate and see necessary business information on it if it is Organization Validated, which build more trust for customers. OV Certificate is a standard for commercial websites.
EV Certificates (Extended Validation) EV Certificates gives the most security hence trust to website visitors. The validation process involves the most effort including an in-depth investigation following industrial standards to authenticate and verify an organization’s physical and legal existence. If a website is Extended Validated the company name of the website itself will appear before the URL address in a Green bar. This gives customers the maximum confidence to visit your website, thus it is recommended for online businesses and corporate websites.
When a visitor comes to a website page with an SSL certificate, their browser Search bar would have a padlock icon displayed in front and there will be https:// prefix in the URL address instead of http:// (the ‘s’ stands for secure). Apart from that, a site seal can also be added to your website page to show them it is secured. Visitors can also tell apart if its a DV or OV by looking at the Policy Identifier.
To look at the policy identifier, one can click on the padlock icon before the URL address bar to display the certificate, and the policy identifier is shown in the certificate information. If it is 184.108.40.206.2.1, then it is Domain validated; If it is 220.127.116.11.2.2 then you would know it is Organization validated. Whereas, websites protected by EV SSL display a green browser bar as well, making visitors feel more secure.
Also known as a UCC (Unified Communications), is an extension within a certificate that allows you to secure and list multiple common names. For example, you could get one SAN SSL Certificate to list all of the below: