Speak the language of security with an SSL certificate. The little green lock lets visitors know that you’ll keep their data safe.
Protect 1 site.
Protect 5 sites.
Protect unlimited sub-domains.
Protect 1 site.
Protect 5 sites.
An SSL (Secure Sockets Layer) certificate is a digital certificate that authenticates the identity of a website and encrypts information sent to the server using SSL technology. Encryption is the process of scrambling data into an undecipherable format that can only be returned to a readable format with the proper decryption key.
An SSL certificate ensures safe, easy, and convenient Internet shopping. Once an Internet user enters a secure area — by entering credit card information, email address, or other personal data, for example — the shopping site’s SSL certificate enables the browser and Web server to build a secure, encrypted connection. The SSL “handshake” process, which establishes the secure session, takes place discreetly behind the scene without interrupting the consumer’s shopping experience. A “padlock” icon in the browser’s status bar and the “https://” prefix in the URL are the only visible indications of a secure session in progress.
By contrast, if a user attempts to submit personal information to an unsecured website (i.e., a site that is not protected with a valid SSL certificate), the browser’s built-in security mechanism triggers a warning to the user, reminding him/her that the site is not secure and that sensitive data might be intercepted by third parties. Faced with such a warning, most Internet users will likely look elsewhere to make a purchase.
Some websites or server configurations require a specific type of SSL. Use these questions as a guideline to help determine which SSL you should use.
How do you want to show visitors that your site is secure? Do you want visitors to see the SSL belongs to a verified organization, or is HTTPS in the address enough?
All SSL-secured sites display HTTPS in the address. Premium Extended Validation (EV) SSLs also display a prominent indicator — usually a green address bar — to quickly assure visitors that the organization’s legal and physical existence was verified according to strict industry standards. For more information, see What is a Premium Extended Validation (EV) SSL certificate?
Do all of the sites have fully qualified domain names, or do you need to add a few subdomains (see What is a subdomain?) on the fly?
EV UCC SSLs represent all secondary domains with the primary business name, so all sites should be related. A UCC site seal displays only the primary domain name as “Issued To,” and all secondary websites are listed in the certificate details.
Our SSL certificates are issued to individuals and companies worldwide, but there are a few restrictions. For more information, see Which countries are currently supported for certificate issuance?
Our SSL certificates work on all types of hosting and server configurations, but these specific servers must use the certificate listed:
All domains are listed in a UCC. If you want to secure both fully qualified (example: www.coolexample.com) and partially qualified (example: coolexample.com) domains with a UCC, make sure to select a domain for each one. Know which domains you need to cover when you purchase, because you cannot upgrade.
A Unified Communications Certificate (UCC) is an SSL certificate that secures multiple domain names and multiple host names within a domain name. A UCC lets you secure a primary domain name and up to 99 additional Subject Alternative Names (SANs) in a single certificate. UCCs are ideal for Microsoft® Exchange Server 2007, Exchange Server 2010, and Microsoft Live® Communications Server.
UCCs are compatible with shared hosting. However, the site seal and certificate “Issued To” information will only list the primary domain name. Please note that any secondary hosting accounts will be listed in the certificate as well, so if you do not want sites to appear ‘connected’ to each other, you should not use this type of certificate.
Note: You cannot upgrade a UCC to include more names. If you bought the UCC with up to five domain names, you need to purchase a new certificate to add another domain name.
Wildcard SSL certificates secures your website URL and an unlimited number of its subdomains. For example, a single Wildcard certificate can secure www.coolexample.com, blog.coolexample.com, and store.coolexample.com.
Wildcard certificates secure the common name and all subdomains at the level you specify when you submit your request. Just add an asterisk (*) in the subdomain area to the left of the common name.
If you request your certificate for *.coolexample.com, you can secure:
If you request your certificate for *.www.coolexample.com, you can secure:
Wildcard certificates secure websites just like regular SSL certificates, and requests are processed using the same validation methods. However, some Web servers might require a unique IP address for each subdomain on the Wildcard certificate.
A Premium Extended Validation (EV) SSL certificate is a digital certificate issued in conformance with the extended validation guidelines defined by the CA/Browser Forum.
The introduction of Premium Extended Validation (EV) SSL certificates will tighten the security of Internet transactions as certificate requestors will be subject to a thorough, standardized vetting process which all issuing Certification Authorities (CAs) must adhere to.
The Premium Extended Validation (EV) SSL certificate standard provides an improved level of authentication of entities that request digital certificates for securing transactions on their websites. The latest generation of Internet browsers will display Premium Extended Validation (EV) SSL-secured websites in a way that allows visitors to instantly recognize that the organization that operates the site has been authenticated in accordance with the CA/Browser Forum’s uniform vetting standard.
Premium Extended Validation (EV) SSL certificates are particularly useful for companies whose Internet domains are considered at a high risk of being targeted by phishing schemes and other types of Internet fraud. High-risk domains include domains owned by high-profile online financial services, banking sites, auction sites, popular retailers and other sites that conduct Internet transactions likely to be targeted by Internet fraud.