Elliptic Curve Cryptography or ECC certificate

• Secure site pro
• Secure site pro EV

 SSL Certificates

There are multiple SSL certificates on the current brands on the market with the most trusted being : Digicert, Thawte, Sectigo and Geotrust.

SSL types

Extended validation.

The Extended validation or EV certificates is probably the more complicated to obtain but also the most trusted as validation requires:

• Authentication of company registration and activity with the local business registrar organization.
• Validation of domain ownership.
• Confirmation of registered address and telephone number.
• Verification of employment and authority.

This SSL certificate will display the full identity of your company in the browsers to ensure maximum trust from your customers.

EV certificate are mainly recommended on payment website, financial institutions websites as well as government pages.

Organization Validated

The organization validated is the most common used certificates, mainly used on web-server and non-payment pages.

It validation requires:

• Authentication of company registration
• Validation of domain ownership.
• Confirmation of telephone number.
• And a phone call to the certificate requestor.

Domain Validated

Domain validated certificates or DV certificates are the most basic SSL certificates as they only require basic access to the domain.

Because of their low authentication, DV certs are recommended for internal websites and test sites.

Validation just require access to a predetermine email address provided by the certificate authority.

Certificates Brands

Here are some of the most trusted and used SSL certificate providers:

DigiCert SSL

DigiCert is the current market leader, they split their certificate in 3 different segments:

• Robust: The secure site pro range is the most robust SSL certificate on the market with up to 512 RSA SHA-2 Algorithm and 384 ECC public key cryptology.
• Business SSL: this robust SSL that includes malware scanning, business SSL is the preferred SSL for banks and governments.
• Standard SSL: this is an entry level SSL with 256bits encryption.

Sectigo SSL.

Sectigo (previously know as Comodo SSL) is a global SSL provider is the largest SSL certificate provider on the market.  they are rose in recent year and have maintain a steady market share.

Thawte SSL

Thawte, a subsidiary of DigiCert is one the oldest and most trusted SSL certificate on the market.  They offer a wide rand of certificate for small to mid-size organizations.

Geotrust SSL

Geotrust is also a subsidiary of DigiCert that offer SSL certificate with up to 256 bits encryption and multi -domain DV certificates.

In conclusion

In conclusion, choosing an SSL depends more on your organization type, your budget as well as the site you are securing.

Please contact one of our agents should you need further recommendation on this

Chat with us here

Post Quantum Cryptography

So, What Exactly Is a Post Quantum Cryptography?

Post Quantum Cryptography (PQC) refers to new measures put in place to protect data and sensitive information from future quantum computers mounted by hackers. These computers could allow hackers to access the data through algorithmic trapdoors faster, with their superposition ability. Besides, the phenomenon known as entanglement enables them to communicate with one another from a distance. Therefore, due to their processing power, quantum computers can generate and test all possible cryptographic keys within a short time.

How The PQC Works?

As an effort to stop the risks that technology poses to data storage, new kinds of encryption approaches have been implemented with the current computers. These more robust defenses will be impenetrable to future attacks. DigiCert, in collaboration with other security players, is creating new PCQ to secure database encryption.

The first defense is to increase the number of encryption keys. This move increases the size of the permutations significantly. Therefore, even with a quantum machine that uses Grover’s algorithm, it will be nearly impossible to search through. Surveys show that the quantum threat is looming, and you need to start replacing database encryption solutions and SSL certificates.

Another practical approach is creating a more complex trapdoor function. Cyber security firms are working on various strategies like super singular isogeny and lattice-based cryptography for key exchange. They are very complex that not even a powerful quantum computer with a super algorithm would easily crack it.

Benefits

When quantum computers become a reality, the elliptic curves, RSA, and cryptographic measures will be of no use. However, PQC provides a secure means to protect yourself.
Using Digicert pro SSL Certificates gives you ease and convenience of having all your data and sub-domains under one binding cryptographic key. Besides, it provides for a secure connection from a web server to a browser.

Furthermore, you can stay ahead of the curve by using a secure site pro. It provides the highest level of authentication and extra features. These further give robust protection and comprehensive security against targeted attacks.

Which Digicert SSL Certificate Offers Post Quantum Cryptography?

Final Thoughts

Why use EV certificates

What is an EV certificates

EV certificates or Extended Validation (EV)  SSL certificates are the highest level of authentication  of  SSL certificates. They are the only certificates that trigger both the padlock and the green address bar while displaying the identity of the website owner.

The EV certificate is by far the most rigorous way of verifying identity information and the authority of companies or individuals that apply for an SSL certificate, an Extended Validation certificate provides a strong guarantee that the website owner passed a thorough identification process. The applicant has to prove not only exclusive rights to use the domain, but also its physical and legal existence.

What type of Website needs EV?

EV certificates are mainly used on websites that accepts payments or requires a high level of authentication such as bank or government as they collect sensitive data.

Banks, insurance carriers, credit unions and other financial institutions are favorite targets for phishing attacks and other cyber security threats.

Having an EV Certificate is the best way to give the customers peace of mind and tell them that the website they are visiting has passed the strict guidelines maintained by the CA/Browser Forum.

As soon as the address bar turns green, they know that the site owner actually is who he says he is.

You can find below s0me of the recommended EV certificates are :

• Digicert secure site Pro EV : This is the most robust and most trusted Ev certificates on the market.
• Digicert Secure Site EV: Recommeded for financial institutions on non transactional sites.
• Thawte EV: for small to mid size organisations
• Geotrust EV : for small to mid-size organisations

Wildcard vs multidomain or San certificates, what is the difference?

What is a Wildcard Certificate?

Wildcard certificates are ideal when you have a single domain but want to use SSL on multiple subdomains. If you own sslcertificate.ch, your certificate *.sslcertificate.ch  will allow you securing multiple subdomains. DigiCert, Thawte, Geotrust & sectigo all offers this type of SSL certificate.

What are SAN Certificates?

SAN Certificates or Multidomain SSL certificate allows you to secure multiple subdomains from different domain with a single certificate.

One use of a SAN certificate is when you have multiple domains for the website. For instance, you might own domain.com and domain.net and want a certificate for both.

Several companies offer these options to customers, including Thawte, Geotrust, DigiCert, and Sectigo. These companies may offer specific features that make their SSL products more appealing.

There are other options to consider. Customers can also choose the level of encryption that works best for them. Digicert Secure site Pro range has the higher encryption of all with up to 512 bit.

Unlike wildcards that are restricted to Domain Validated (DV) & Organisation validated (OV), you are able to obtain SAN certificate as an extended validation certificate

Fortunately, these options mean that you can find the ideal solution for your company at a price point that works for you.

Free SSL Certificates, why should you avoid them?

SSL certificates are designed to provide a better level of security for your website.
They offer a specific kind of encryption, ensuring that data moving from a user’s computer to the site maintains a level of protection and is unreadable to any malicious identity thieves, hackers, or any other type of third party.

It also sends a signal to the search engines, notably Google, that your website is safely protected. SSL certificates are required by Google to display your secured website in search.

They work to flag sites as unsafe in the Google Chrome browser as SSL certificates are in place to ensure users feel an added level of security while using the internet.

While there are free certificates available, there are some serious concerns regarding security, validity, and authenticity that can affect website owners using them.

How Do Free SSL Certificates Work?

Free certificates are issued at no cost by some web host providers. The reasoning for issuing free certificates was to make HTTPS access available to all websites.

There are two different types of free certificates:

• Self-signed certificate where there is no requirement for any certificate authority to sign them as the issuer signs them.
• Free SSL certificates such as let’s encrypt which is signed by a certificate authority

Though both these certificates do provide an https connection, here are the main cons of a free SSL

1. There is literately no support for free ssl certificates
2. free certificates do not validate the site owner’s identity, which result in lower trust from visitors.
3. their lifetime is usually 90 days meaning you will need to request a new one each time.
4. Free SSl certificate offer no warranty, if you have an issue with them , you are pretty much on your own.
5. Most fraudulent websites use free ssl certificates as they have a very low authentication process.
6. To be honest, do you really expect a free certificate to have the same level of security as premium certificate ?

Differences Between Free and Paid SSL Certificates

One of the main differences between free and paid certificates is that free certificates are only available with a domain validation option. These certificates are used to provide only a basic level of authentication, making them suitable for blogs and small websites.

The free version of the certificate does not offer the same features as organization validation or extended validation certificates. Organization Validation certificates provide a high level of assurance and are generally used to validate an organization or more significant sized business. Extended validation certificates assure your website visitors that they are visiting the official website for your business.

Another reason to avoid free certificates is that there are no safeguards in place to stop malware distributors from using these certificates to create websites that distribute malware. They can make them look official with the free certificates, and there have been incidents where this has happened.

The paid versions of certificates offer both extended and organization validated certificates, which are much more secure than a free certificate.

Paid SSL offers a more extended period of validity, while free certificates do not provide extended domain validation.

There is also limited support for free certificates, whereas paid certificates are available with full support if you have any problems with your certificate.

Certificate Renewal Options

Another difference between free and paid SSL is that free certificates last only ninety days before expiring. At the end of this period, users must exchange their free certificates for a new one.

Paid certificates are generally issued and last for up to two years, although there is a chance that the validity may be shortened to one year.

you should consider purchasing the paid version for your website to avoid a lot of the hassles associated with having a free certificate. There is also the added element of trust your customers will have when they visit your website.

Some of the leading paid certificate issuers are

• Thawte
• DigiCert
• GeoTrust
• Sectigo.

Visit out store to enroll for your premium certificates https://www.sslcertificate.ch/

SSL certificates

SSL certificates, why do i need one ?

If you are trading online, an ssl certificate is the most probably the first thing you should think about. SSL don’t only encrypt data between your website and the customer, it also provide a business authentication ensuring your visitors they are dealing with the right entity.

Type of SSL certificates

The type of certificates available as well as their application mainly depend on the transactions you conduct on your site.

1. Extended validation or EV: This certificate has the highest level of validation, it doesn’t only have a high level encryption; this SSL also validates your organisation name through the green address bar. We recommend this certificate for financial and trading websites.
2. Organisation validate or OV: This certificate confirms the website owner’s identity as well as registration with the local business registrar. this can be used on mail server and non-transactional websites
3. Domain Validated or DV: This is the lowest level of authentication and only confirms domain right of the certificate requestor; this is recommended for any internal websites.

Why use Prima Secure?

We all know how draining the SSL validation process can be,  here are some the added value for using Prima Secure:

1. Validation: We pre-validate your certificate to anticipate any documentation the vendor will require in order to speed up the issuance process. our team handles all follow up so you can concentrate on running your business.
2. Support: We keep all support in-house, this enable us to provide better service delivery; we will assist you from the certificate generation to installation at no extra cost.
3. Discount: We extend our partner discount to our customer meaning we are able to offer up to 55% off on selected brands.
4. Payment: as our customers are globally located, we offer billing in the following currencies:” USD, EUR, CHF & ZAR”. means of payment can be via bank transfer to our Swiss or South African bank, Credit Card, Paypal or 30 days net (T&C Applies)

Which brands do we sell ?

We are a registered and authorized partner pf the following brands:

1. Thawte: Thawte SSL is one of the most recognized certificate brand on the market.
2. Geotrust: Geotrust SSL provide a wide range of certificate from EV, DV, Wildcards and OV.
3. Digicert: Digicert SSL with it secure site pro range provide the most robust certificate on the market.
4. Sectigo: Sectigo SSL previously Comodo SSL is one of the largest certificate provider on the market.
5. Positive SSL: Positive SSL provides a wide range of domain validated certificates.
6. Rapid SSL : rapid SSL is a Digicert own brands that provides domain validated certificates.

Please visit our ssl page for more info https://www.sslcertificate.ch/ssl-certificates/