SSL Certificates protect your customer’s personal data including passwords, credit card information and identity.
All SSL Certificates include:
- SHA-2 and 2048-bit encryption
- Protects unlimited servers
- Unlimited free reissues
- Boost Google search ranking
- Up to US$ 1M liability protection
- Compatible with all major browsers
- Security Seal on your site
+91 7666 088 000
- SSL Certificates Overview
- SSL Certificates Quick Tour
- SSL Certificates Compatibility
- SSL Certificates FAQ's
SSL Certificates Overview
Using Secure Socket Layer (SSL) any data (including information, user names, passwords, credit card details, phone numbers, etc.) can pass more safely in encrypted format.
Getting an SSL Certificate for your website or email server can ensure that data you send/receive is encrypted and safe from hackers.
Rock-solid Security – Up to 256-bit SSL encryption
SSL certificates provide up to 256-bit encryption for maximum security of your website visitors’ data. 99% browser recognition
Boost Customer Confidence – Ensure your customers feel safe
Many customers actively look for the SSL lock before handing over sensitive data. Get an SSL certificate to increase your customer’s trust in your online business.
Better SEO Rankings – Rank better than competitors
Google gives higher rankings to websites secured with SSL certificates. Which means SSL certificates are critical if you’re serious about your online business.
SSL Secure Seal – Build Customer Credibility
Your SSL certificate comes with a Secure Seal that serves as an assurance to customers that your site is protected and safe to transact online.
SSL Certificates Quick Tour
What is an SSL Certificate?
An SSL certificate keeps you and your customers safe by protecting the information that’s flowing to and from your website. It encrypts names, addresses, passwords, account and credit card numbers and more so hackers and other online criminals can’t read them.
How does it work?
An SSL certificate serves as an electronic “passport.” It establishes the website’s authenticity and credibility and enables the browser and Web server to build a secure, encrypted connection. Credibility is established by checking the digital certificate, which includes:
- The Certificate holder’s name (individual or company)
- The Certificate’s serial number and expiration date
- A copy of the Certificate holder’s “public” cryptographic key
- The digital signature of the Certificate-issuing authority
- Extended SSL Certificates give the site visitor an additional visual cue, displaying the Certificate holder’s name against a distinctive green background in the visitor’s
How does my customer know my site is secure?
Once a visitor is on an SSL-protected page, the following visual indicators appear to show them that your site is secure and to give them the confidence to proceed:
- A “padlock” icon in the browser’s status bar
- The https:// prefix in the URL
- The URL address bar turns to green (Extended Validation Certificates only).
- The Trusted “Verified and Secure” site seal
- Fully validated
- Up to 256-bit encryption
- Valid up to 5 years (depending on certificate type)
- 99% browser recognition
- Stringent authentication
- Phone, email and Web support
- Warranty (up to $1,000,000)
- Covers an unlimited number of servers (other Certification Authorities charge for every server)
Our certificates provide the same type of ironclad, corporate-class security as our competitors, but for up to 90% less than you’ll pay elsewhere!
SSL Certificates Compatibility
The following browsers and devices work with our SSL certificates. This means users accessing the site you secured can successfully send and receive encrypted information.
- AOL® — 5 and higher
- Google Chrome™ — All versions
- Firefox® — All versions
- Internet Explorer® — 5.01 and higher
- Konqueror® — All versions
- Mozilla® — All versions
- Netscape — 4.7 and higher
- Opera browser© — 7.5 and higher
- Safari® — Mac OS® 10.3.4 and higher
- ACCESS NetFront™ — 3.3 and higher
- Android™ — All versions
- AT&T WAP Gateways — All AT&T phones that use WAP version 1.X
- BlackBerry® — 4.1 and higher
- iPhone® — All versions
- iPad™ — All versions
- Kindle® — All versions
- Motorola® phones — Manufactured in 2009 and later
- Nokia® devices — Manufactured in 2007 and later
- Nook® — All Color and Tablet Versions
- Palm OS® — 6.1 and higher (also Treo 650)
- Sprint® devices — Manufactured in 2010 and later
- Sony PlayStation Portable® — 2.5 and higher
- Sun Java Runtime® (JRE) — 1.4.2_07 and higher and 1.5.0_02 and higher
- Windows Mobile® — 2005 AKU 2 and higher
If you use an older browser, you might receive a warning that the root certificate is not trusted. If that happens, simply install the root certificate. To do so, click “View Certificate.” Then, when the certificate displays, click “Install Certificate.” You can also download the root certificate directly from the Repository.
These browsers and devices have a root certificate installed: the Starfield Class 2 Certification Authority, or the Starfield Root Certificate Authority – G2.
SSL Certificates FAQ’s
What is an SSL certificate?
An SSL (Secure Sockets Layer) certificate is a digital certificate that authenticates the identity of a website and encrypts information sent to the server using SSL technology. Encryption is the process of scrambling data into an undecipherable format that can only be returned to a readable format with the proper decryption key.
A certificate serves as an electronic “passport” that establishes an online entity’s credentials when doing business on the Web. When an Internet user attempts to send confidential information to a Web server, the user’s browser accesses the server’s digital certificate and establishes a secure connection.
An SSL certificate contains the following information:
- Certificate holder’s name
- Certificate’s serial number and expiration date
- Copy of the certificate holder’s public key
- Digital signature of the certificate-issuing authority
For information about installing SSLs, see Install SSL certificates.
What is Domain Validation (DV) SSL?
What is Organization Validation (OV) SSL?
What is a Extended Validation (EV) SSL certificate?
Premium Extended Validation (EV) SSL certificate is a digital certificate issued in conformance with the extended validation guidelines defined by the CA/Browser Forum.
This certificate tightens the security of Internet transactions. Certificate requestors will be subjected to a thorough, standardized vetting process which all issuing Certification Authorities (CAs) must adhere to.
It provides an improved level of authentication of entities that request digital certificates for securing transactions on their websites. Modern internet browsers will display Premium Extended Validation (EV) SSL-secured websites with a portion of green in the web address bar. It allows visitors to instantly recognize that the organization has been authenticated as per the CA/Browser Forum’s uniform vetting standard.
These certificates are particularly useful for companies whose Internet domains are considered at a high risk of being targeted by phishing schemes and other types of Internet fraud. Domains owned by high-profile online financial services such as banking and auction sites, popular retailers conducting online transactions are prone to Internet fraud.
What is a Wildcard SSL certificate?
Wildcard SSL certificates secures your website URL and an unlimited number of its subdomains. For example, a single Wildcard certificate can secure www.coolexample.com, blog.coolexample.com, and store.coolexample.com.
It secures the common name and all subdomains at the level you specify when you submit your request. Just add an asterisk (*) in the subdomain area to the left of the common name.
On requesting your certificate for *.coolexample.com, you can secure:
If you request your certificate for *.www.coolexample.com, you can secure:
Wildcard certificates secure websites just like regular SSL certificates. Requests are processed using the same validation methods. Some Web servers might require a unique IP address for each subdomain on the Wildcard certificate.
What is an intermediate certificate?
Intermediate certificates are used as a stand-in for our root certificate. We use intermediate certificates as a proxy. It helps keep our root certificate behind numerous layers of security, ensuring its keys are absolutely inaccessible.
The root certificate itself signed the intermediate certificate so it can be used to sign the SSLs our customers install and maintain the “Chain of Trust.”
Installing Intermediate Certificates
On issuance of your SSL, an email with a link to download your signed certificate and our intermediate certificates.
How you install the certificates depends on the server software you use. You can download and install an intermediate certificate bundle in most cases. Some server types require you to download and install the two intermediate certificates individually. Please refer to the Install SSL certificates for the specific process you should follow.
All of our intermediate certificates and certificate bundles are also available from the repository.
What are the advantages of a Premium Extended Validation (EV) SSL certificate for your business?
Premium Extended Validation (EV) SSL certificates provide a prominent visual indicator that visitors can immediately recognize. Sites secured with an EV certificate display a green address bar. This shows visitors that your organization’s credentials have been authenticated according to a stringent, standardized vetting process.
Additionally, EV SSL certificates assure visitors that your organization is who it claims to be, and that they are not on a phishing site.
Premium EV SSL certificates are available for the following types of organizations, businesses, and corporations:
- Incorporated or limited liability companies that are legally registered with a “Good Standing,” “Active,” or equivalent status.
- Business entities such as general partnerships, unincorporated associations, DBAs, and sole proprietorships.
What is a Multiple Domain (UCC) SSL certificate?
A Unified Communications Certificate (UCC) is an SSL certificate that secures multiple domain names and multiple host names within a domain name. A UCC lets you secure a primary domain name and up to 99 additional Subject Alternative Names (SANs) in a single certificate. UCCs are ideal for Microsoft® Exchange Server 2007, Exchange Server 2010, and Microsoft Live® Communications Server.
UCCs are compatible with shared hosting. However, the site seal and certificate “Issued To” information will only list the primary domain name. Please note that any secondary hosting accounts will be listed in the certificate as well, so if you do not want sites to appear ‘connected’ to each other, you should not use this type of certificate.
- Purchase a Multi-Domain UCC SSL certificate (they’re labeled Multiple Domains UCC on that page)
What is the difference between a Premium Extended Validation (EV) Certificate and a Deluxe SSL Certificate?
The difference between Premium Extended Validation (EV) and Deluxe SSL certificates is the vetting process to be completed in order for the Certification Authority (CA) that issues a signed certificate to the requestor. Websites with Premium Extended Validation (EV) certificates highlights a portion of the address bar in green. The vetting process validates the requestor’s domain control and verifies the entity’s legal existence and identity. It authenticates the following information.
- Legal existence: A confirmation must be done by the Certification Authority (CA) with the Incorporating Agency in the requesting entity’s Jurisdiction of Incorporation that the organization named in the Certificate legally exists as valid.
- Identity: As of the certificate issue date, the CA must confirm that the legal name of the entity named in the EV Certificate matches the name on the official government records of the Incorporating Agency in the requesting entity’s Jurisdiction of Incorporation. (If an assumed name is included, that it is properly registered by the requesting entity in the jurisdiction of its place of business.)
- Registration number: The CA must obtain the specific unique registration number assigned to applicant by the Incorporating Agency in the requesting entity’s Applicant’s Jurisdiction of Incorporation.
- Registered agent: Further, the CA must obtain the identity and address of the requesting entity’s Registered Agent or Registered Office (as applicable) in the requestor’s Jurisdiction of Incorporation.
- Right to use domain name: As per the date the certificate is issued, the CA will have to verify that the entity named in the certificate owns or has the exclusive right to use the domain name listed in the certificate.
- Authorization for Premium Extended Validation (EV) SSL certificate: The CA must verify that the entity named has authorized the issuance of the certificate.
How long will it take to issue my certificate?
Many factors determine how long it takes to issue an SSL certificate, such as certificate type, what we need to validate, and how quickly you respond with the requested information. Here’s a brief rundown by certificate type:
- Standard SSL certificates — Domain name validated, which means we need to verify that you maintain control of the domain. If you provide all the requested documentation and we can quickly authenticate it, we can issue a certificate within minutes.
- Deluxe SSL certificates — Domain name and company validated, which means we need to verify your control of the domain and the legitimacy of your business, typically by calling during normal business hours. If you provide all the requested documentation, it can take us two to five business days to verify and issue a certificate.
- Premium SSL certificates — Premium SSLs require the most extensive validation. We verify your control of the domain and the legitimacy of your company by checking the legal name, address, phone number, executives, and other information you submit with your request. The process might involve a lot of email correspondence with our SSL specialists, so please don’t hesitate to ask questions.
How do I install an SSL certificate on my server?
You can install SSL on your server using below 3 simple steps.
- Generate a certificate signing request (CSR).
- Request the SSL certificate.
- Install the SSL certificate.
These instructions apply to our SSL certificates, but you will need to complete similar steps for SSL certificates from any other company.
How do I know my secure certificate is safe from vulnerabilities?
Our Certificate Authority validates the identity of an entity purchasing an SSL certificate. The Certificate Authority does so by validating documentation provided by the requestor. The Certificate Authority then digitally signs the certificate using a hash function.
A hash function, when combined with the certificate, creates a standard length digital signature that should be unique. Three common hash functions are MD5, MD2, and SHA-2. With the MD5 and MD2 functions, individuals with the appropriate knowledge and computing power can recreate another digital signature to match the original. If this happens, an unsuspecting user could unknowingly be redirected to another site.
Most Certificate Authorities realize the weakness in MD5 and MD2 and use the hash function called SHA-2 which, to date, no one has been able to break. As a user, you should be suspect of SSL enabled sites that use MD5 or MD2.
As a further security measure, we do not allow null bytes in common names and manually review all requests containing either “\” or “/” to prevent misuse.
Which countries are currently supported for certificate issuance?
Our SSL certificates can be issued to individuals and companies worldwide with the following restrictions.
Premium Extended Validation (EV) SSL certificates are available to registered business entities in the following countries:
- Hong Kong
- New Zealand
- South Africa
- United Arab Emirates
- United Kingdom
- United States (including Puerto Rico)
Deluxe Individual Secure certificates currentlyCANNOT be issued to individuals in the following countries:
- North Korea
Deluxe Secure certificates, Driver Signing certificates and Code Signing certificates can be issued only to registered business entities in the following countries:
- Canada (Federally Registered or Provincially Registered in British Colombia, Newfoundland, Nova Scotia, Prince Edward Island or Quebec)
- Costa Rica
- Czech Republic
- Dominican Republic
- Hong Kong
- Isle of Man
- New Zealand
- Northern Ireland
- South Africa
- South Korea
- Sri Lanka
- United Arab Emirates
- United Kingdom
- United States (including Puerto Rico)
- Virgin Islands
- Wales Charity Commission
Secure certificates of any type currently CANNOT be issued to individuals or business entities in the following countries:
- North Korea
Secure certificates of any type currently CANNOT be issued for websites with the following country-code top-level domains (ccTLDs):
- .kp—North Korea