By Alex


2010-07-30 08:25:47 8 Comments

I need a SSL certificate for a new site I'm building and I have to choose a SSL provider. What to look for when choosing and what's your experience dealing with them?

Thanks!

6 comments

@user6165 2011-03-18 07:48:56

There are different type of SSL Certificate are available in the market. so buyer are confused which SSL Certificate is best for them like you question here. If your want to secure your domain plus subdomain then i recommend you to use Wildcard SSL. In short it's all depending on what type of requirement you have.

@Brian Boatright 2010-08-01 15:39:54

I switched to http://www.digicert.com Extended SSL for our eCommerce sites.

I used to use Verisign and Thawte.com but found digicert to be great and support is very good. If you don't need the extended (green bar) SSL I think any of the providers like GoDaddy and the like will do.

@gigawatt 2010-07-30 16:03:25

One word: StartCom

http://cert.startcom.org/

@stivlo 2011-11-09 05:04:08

auth.startssl.com on Firefox 7 says: "Secure Connection Failed, An error occurred during a connection to auth.startssl.com. SSL peer was unable to negotiate an acceptable set of security parameters. (Error code: ssl_error_handshake_failure_alert)"

@Stephen Ostermiller 2017-10-12 11:51:38

@fwaechter 2010-07-31 01:38:33

startssl.com is free and good supported. Maybe you wanna check this. Otherwise - like Sruly written - goDaddy is a cheap and good ssl provider.

@Jonas 2011-05-14 12:05:36

The free StartSSL cert doesn't seem to work with the default browser on Android :(

@Damian Yerrick 2016-02-11 17:48:32

@Jonas Android 2's browser was deficient in other ways, such as allowing only one distinct certificate per IP (no SNI). Fixed since 3.x.

@Sruly 2010-07-30 10:58:56

If you are just trying to secure your connection you want to get the cheapest cert you can find.

At GoDaddy ssl cert only cost $30 a year which is cheaper than anywhere else I have found and they have a nice manager app and they work well in all browsers.

I have also found that if you search for ssl certificate in google you can find an ad from GoDaddy that offers the cert for even less ($12.99) a year.

When I build sites and all I need is the encryption for logins or a secure form this is what I use.

@Lèse majesté 2010-11-18 17:13:50

Godaddy's regular price is $50/year. I couldn't find the Godaddy ad that sells them for $12.99. It would be nice if you could link to it directly. However, I know that DreamHost offers the same for $15/year as their regular price.

@Mark Gavagan 2015-02-03 21:16:29

Warning: GoDaddy has been raising prices dramatically (domain watch price tripled this year), so be careful of initial discounts versus renewal and switching costs.

@Tim Post 2010-07-30 09:18:59

Certificates are priced and issued depending on your need. Lower end certificates are good for simply providing an encrypted connection for your visitors, useful when you collect personally identifiable information that is not financially related. The verification process to get one of these is usually very simple:

  • The certificate company looks up the contact e-mail for your domain (via whois)
  • The certificate company sends you an e-mail to verify the SSL request
  • You verify the request and they deliver your cert shortly after

If your site is e-commerce related, where users have to put in credit card / bank information to complete transactions (even if you don't store it, which I hope you would not), the certificate needs to do more than just encrypt the connection, it needs to verify the identity of your company. These certificates are of a higher grade, and require more work to verify before being issued. Hence, they are considerably more expensive.

Any SSL certificate provider is going to offer both kinds, and more. Your decision, however should be mostly based on browser compatibility. Don't go for something $20 less just to find out that it doesn't work with an older version of IE or Safari. You'd be amazed how many people still actually use IE6. The flip side of that is ensure compatibility with newer browsers, such as Google Chrome.

RapidSSL or GeoTrust is usually a good place to start, or your hosting / registrar company may offer them to existing customers at a slightly lower cost. Just make sure that you buy one that is appropriate for the scenario at hand.

@Ben Hoffman 2010-07-30 13:47:48

+1 Very thorough. Tim is right a lot of people still use old browsers. IE6 is still used by almost 10% of people and won't be going away any time soon because of certain enterprise software made specifically for it.

@sophie 2012-09-10 06:58:56

I do agree with your comment and want to add one point: Just go for Authority Certificates and search for their resellers who are providing same ssl certificate with huge discount. That can definitely save some $$. You can find many resellers buy searching in Google...All the best

@Mark Gavagan 2015-01-29 21:25:07

Feb 2014 article: "Pros and Cons of Single-Domain, Multi-Domain, and Wildcard Certificates" casecurity.org/2014/02/26/…

Related Questions

Sponsored Content

5 Answered Questions

[SOLVED] Why should I pay for an SSL certificate?

1 Answered Questions

[SOLVED] New SSL certificate is not propagated

2 Answered Questions

[SOLVED] SAN SSL certificate vs Single Site SSL and SEO

2 Answered Questions

[SOLVED] Untrusted Cloudflare SSL Certificate

1 Answered Questions

[SOLVED] SSL Certificate

1 Answered Questions

[SOLVED] Do I need an SSL Certificate?

Sponsored Content