• +41225349016 /+27218135871
Menu

Category Archives:
SSL Certificates Archives | SSL Certificates

Home / Blog / SSL Certificates
Choose the Right SSL certificate for your business

Choose the Right SSL certificate for your business

Choose the Right SSL certificate for your business

The SSL certificate allows for the transference of information securely from a web server to a browser. SSL Certificates  have 3 different types:

  •  Domain validated (DV).
  • Organization validated (OV).
  • And extended validation (EV).

SSL certificates can noted by the visual cue of the word “Secure” and a graphic of a lock in the upper left hand corner of the browser bar. Additionally, those web addresses that contain an “s” after the “http” handle include this feature because the site has been secured through the means of SSL certification.

Domain Validated Certificates (DV)

The DV SSL certificate are generally issue once the applicant for the domain has in some way proven that is the owner. domain ownership can be proved in may ways, including but not limited to responding to an e-mail that is sent to the addressed, which he or she has registered is his or her address in the registration for the domain. This type of certificate is distributed by SSL companies, such as Thawte and Geotrust. Another way in which a DV demonstrates ownership is responding to an e-mail sent to any of a number of administrative contacts from the domain.

Organization Validation SSL Certificates (OV)

The organization validated SSL certificate goes one step beyond the DV form of SSL. This is a certificate that demonstrates that the individual who possesses ownership over the domain also possesses ownership over an organization. In the case of this form of SSL, it is necessary for the owner to engage in extra steps for the organization’s identity verification. SSL companies who produce this type of certification include Sectigo, Digicert, and RapidSSL.

Extended Validation Certificates (EV)

EV certificates are similar to Organization Validation in the sense that this type of SSL also requires the owner of the domain to offer proof that he or she owns an organization.

The caveat with this particular type of SSL is that it demonstrates that your organization has been legally registered as a business.

In order for the certificate authorities to offer an organization an EV, it is necessary that these individuals gain access to a few key pieces of information. The first is that the company exists in operation and in a specific location.

After this information has been validated, the certificate authorities then go on to validate that this particular company is in fact located in the location in which they claim to be.

EV certificates are the most trusted and secure ssl on the market

 

What is Elliptic Curve Cryptography certificate or ECC certificate?

What is Elliptic Curve Cryptography certificate or ECC certificate?

Elliptic Curve Cryptography or ECC certificate

As websites continue to add features and connect with social networking applications, securing web communications has become increasingly important. This is where secure HTTP, or HTTPS, comes in, which uses encryption to secure web traffic against hackers.
Google has stated that they prioritize sites that support HTTPS in their search results, and an increasing number of users expect to see HTTPS in their address bars.

Services like Secure Site Pro, other DigiCert SSL certificates or Sectigo SSL certificates allow websites to provide this valuable feature.

HTTPS encryption is accomplished using an algorithm. RSA is the industry standard, but elliptic curve cryptography, or ECC, is becoming increasingly widely used.

The history of ECC begins in 1985, when Victor Miller and Neal Koblitz each independently suggested elliptic curves for cryptography. ECC started to gain widespread support in 2004, and in 2009, the National Institute of Standards and Technology recommended 15 curves for different security levels.

Differences Between ECC and RSA

Fundamentally, ECC certificates rely on the near impossibility of calculating a multiplicand from an original and final point. RSA, on the other hand, is based on the difficulty of prime factorization. The two algorithms perform differently in specific metrics.

Key Length

ECC certificates offer significantly shorter keys compared to their RSA equivalents. A 256-bit ECC key provides equivalent encryption strength to a 3072-bit RSA key and a 384-bit ECC key is comparable to a 7680-bit RSA key. This leads to lighter network use during SSL handshakes.

Performance

ECC certificates are easier to calculate on the server site, but conversely harder to calculate on the client side. This can improve network performance if the server is the major bottleneck, but can reduce performance if clients are the main source of lag.

Compatibility

RSA is the industry standard for HTTP encryption, so it is supported on many devices. ECC is not supported on all web servers and desktop browsers and is not adequately tested on mobile devices. This can be a significant concern in a time of increasingly diverse user devices.

Obtaining the Right Certificate

Digicert SSL certificate offers 2 of the best and most robust ECC certificate on the market:

  • Secure site pro
  • Secure site pro EV

Elliptic curve cryptography offers several significant benefits for websites, but it isn’t right for every use case. Whether a website chooses ECC or RSA will depend on which tool offers the most meaningful benefits for that site.

please visit https://www.sslcertificate.ch/digicert-ssl-certificates/ for more information on secure site pro certificates.
SSL Certificates, Which one is right for my business?

SSL Certificates, Which one is right for my business?

 SSL Certificates

There are multiple SSL certificates on the current brands on the market with the most trusted being : Digicert, Thawte, Sectigo and Geotrust.

SSL types

Extended validation.

The Extended validation or EV certificates is probably the more complicated to obtain but also the most trusted as validation requires:

  • Authentication of company registration and activity with the local business registrar organization.
  • Validation of domain ownership.
  • Confirmation of registered address and telephone number.
  • Verification of employment and authority.

This SSL certificate will display the full identity of your company in the browsers to ensure maximum trust from your customers.

EV certificate are mainly recommended on payment website, financial institutions websites as well as government pages.

Organization Validated

The organization validated is the most common used certificates, mainly used on web-server and non-payment pages.

It validation requires:

  • Authentication of company registration
  • Validation of domain ownership.
  • Confirmation of telephone number.
  • And a phone call to the certificate requestor.

Domain Validated

Domain validated certificates or DV certificates are the most basic SSL certificates as they only require basic access to the domain.

Because of their low authentication, DV certs are recommended for internal websites and test sites.

Validation just require access to a predetermine email address provided by the certificate authority.

Certificates Brands

Here are some of the most trusted and used SSL certificate providers:

DigiCert SSL

DigiCert is the current market leader, they split their certificate in 3 different segments:

  • Robust: The secure site pro range is the most robust SSL certificate on the market with up to 512 RSA SHA-2 Algorithm and 384 ECC public key cryptology.
  • Business SSL: this robust SSL that includes malware scanning, business SSL is the preferred SSL for banks and governments.
  • Standard SSL: this is an entry level SSL with 256bits encryption.

Sectigo SSL.

Sectigo (previously know as Comodo SSL) is a global SSL provider is the largest SSL certificate provider on the market.  they are rose in recent year and have maintain a steady market share.

Thawte SSL

Thawte, a subsidiary of DigiCert is one the oldest and most trusted SSL certificate on the market.  They offer a wide rand of certificate for small to mid-size organizations.

Geotrust SSL

Geotrust is also a subsidiary of DigiCert that offer SSL certificate with up to 256 bits encryption and multi -domain DV certificates.

In conclusion

In conclusion, choosing an SSL depends more on your organization type, your budget as well as the site you are securing.

Please contact one of our agents should you need further recommendation on this

Chat with us here

 

Post Quantum Cryptography

Post Quantum Cryptography

Post Quantum Cryptography

Most of us have little or no knowledge of how information on our web browsers is protected. Whenever you are using online services such as emails, bank accounts, or credit cards, a web protocol encrypts and saves the data. These encryption protect all types of electrical communication, including health records, passwords, and digital signatures.
Cryptography protects all information on transit or in the storage on the internet. It operates on asymmetric and symmetric logarithms. However, in recent years, there has been an increasing fear of the emergence of quantum computers that might undermine these defenses. Therefore, as a precaution, researchers and security firms have come up with Post Quantum Cryptography.

So, What Exactly Is a Post Quantum Cryptography?

Post Quantum Cryptography (PQC) refers to new measures put in place to protect data and sensitive information from future quantum computers mounted by hackers. These computers could allow hackers to access the data through algorithmic trapdoors faster, with their superposition ability. Besides, the phenomenon known as entanglement enables them to communicate with one another from a distance. Therefore, due to their processing power, quantum computers can generate and test all possible cryptographic keys within a short time.

How The PQC Works?

As an effort to stop the risks that technology poses to data storage, new kinds of encryption approaches have been implemented with the current computers. These more robust defenses will be impenetrable to future attacks. DigiCert, in collaboration with other security players, is creating new PCQ to secure database encryption.

The first defense is to increase the number of encryption keys. This move increases the size of the permutations significantly. Therefore, even with a quantum machine that uses Grover’s algorithm, it will be nearly impossible to search through. Surveys show that the quantum threat is looming, and you need to start replacing database encryption solutions and SSL certificates.

Another practical approach is creating a more complex trapdoor function. Cyber security firms are working on various strategies like super singular isogeny and lattice-based cryptography for key exchange. They are very complex that not even a powerful quantum computer with a super algorithm would easily crack it.

Benefits

When quantum computers become a reality, the elliptic curves, RSA, and cryptographic measures will be of no use. However, PQC provides a secure means to protect yourself.
Using Digicert pro SSL Certificates gives you ease and convenience of having all your data and sub-domains under one binding cryptographic key. Besides, it provides for a secure connection from a web server to a browser.

Furthermore, you can stay ahead of the curve by using a secure site pro. It provides the highest level of authentication and extra features. These further give robust protection and comprehensive security against targeted attacks.

Which Digicert SSL Certificate Offers Post Quantum Cryptography?

The Digicert Secure Site Pro and Secure Site pro EV are the only SSL Certificates that provides Offers PCQ?

Final Thoughts

It takes time to develop and deploy cryptography techniques. Therefore, even though we think that we still have time to create cryptography defenses, we need to start working now to get ahead of the quantum threat. Experience the convenience on your data using Digicert SSL. Digicert provides PQC through hybrid SSL certificates, secure site pro, and CT Log monitoring.
Why use an EV certificate

Why use an EV certificate

Why use EV certificates

What is an EV certificates

EV certificates or Extended Validation (EV)  SSL certificates are the highest level of authentication  of  SSL certificates. They are the only certificates that trigger both the padlock and the green address bar while displaying the identity of the website owner.

The EV certificate is by far the most rigorous way of verifying identity information and the authority of companies or individuals that apply for an SSL certificate, an Extended Validation certificate provides a strong guarantee that the website owner passed a thorough identification process. The applicant has to prove not only exclusive rights to use the domain, but also its physical and legal existence.

What type of Website needs EV?

EV certificates are mainly used on websites that accepts payments or requires a high level of authentication such as bank or government as they collect sensitive data.

Banks, insurance carriers, credit unions and other financial institutions are favorite targets for phishing attacks and other cyber security threats.

Having an EV Certificate is the best way to give the customers peace of mind and tell them that the website they are visiting has passed the strict guidelines maintained by the CA/Browser Forum.

As soon as the address bar turns green, they know that the site owner actually is who he says he is.

You can find below s0me of the recommended EV certificates are :

  • Digicert secure site Pro EV : This is the most robust and most trusted Ev certificates on the market.
  • Digicert Secure Site EV: Recommeded for financial institutions on non transactional sites.
  • Thawte EV: for small to mid size organisations
  • Geotrust EV : for small to mid-size organisations

 

 

Wildcard vs Multidomain

Wildcard vs Multidomain

Wildcard vs multidomain or San certificates, what is the difference?


What is a Wildcard Certificate?

Wildcard certificates are ideal when you have a single domain but want to use SSL on multiple subdomains. If you own sslcertificate.ch, your certificate *.sslcertificate.ch  will allow you securing multiple subdomains. DigiCert, Thawte, Geotrust & sectigo all offers this type of SSL certificate.

 

What are SAN Certificates?

SAN Certificates or Multidomain SSL certificate allows you to secure multiple subdomains from different domain with a single certificate.

One use of a SAN certificate is when you have multiple domains for the website. For instance, you might own domain.com and domain.net and want a certificate for both.

Several companies offer these options to customers, including Thawte, Geotrust, DigiCert, and Sectigo. These companies may offer specific features that make their SSL products more appealing.

There are other options to consider. Customers can also choose the level of encryption that works best for them. Digicert Secure site Pro range has the higher encryption of all with up to 512 bit.

Unlike wildcards that are restricted to Domain Validated (DV) & Organisation validated (OV), you are able to obtain SAN certificate as an extended validation certificate

Fortunately, these options mean that you can find the ideal solution for your company at a price point that works for you.

 

Why should you avoid free SSL Certificates ?

Why should you avoid free SSL Certificates ?

Free SSL Certificates, why should you avoid them?

SSL certificates are designed to provide a better level of security for your website.
They offer a specific kind of encryption, ensuring that data moving from a user’s computer to the site maintains a level of protection and is unreadable to any malicious identity thieves, hackers, or any other type of third party.

It also sends a signal to the search engines, notably Google, that your website is safely protected. SSL certificates are required by Google to display your secured website in search.

They work to flag sites as unsafe in the Google Chrome browser as SSL certificates are in place to ensure users feel an added level of security while using the internet.

While there are free certificates available, there are some serious concerns regarding security, validity, and authenticity that can affect website owners using them.

How Do Free SSL Certificates Work?

Free certificates are issued at no cost by some web host providers. The reasoning for issuing free certificates was to make HTTPS access available to all websites.

There are two different types of free certificates:

  • Self-signed certificate where there is no requirement for any certificate authority to sign them as the issuer signs them.
  • Free SSL certificates such as let’s encrypt which is signed by a certificate authority

Though both these certificates do provide an https connection, here are the main cons of a free SSL

  1. There is literately no support for free ssl certificates
  2. free certificates do not validate the site owner’s identity, which result in lower trust from visitors.
  3. their lifetime is usually 90 days meaning you will need to request a new one each time.
  4. Free SSl certificate offer no warranty, if you have an issue with them , you are pretty much on your own.
  5. Most fraudulent websites use free ssl certificates as they have a very low authentication process.
  6. To be honest, do you really expect a free certificate to have the same level of security as premium certificate ?

Differences Between Free and Paid SSL Certificates

One of the main differences between free and paid certificates is that free certificates are only available with a domain validation option. These certificates are used to provide only a basic level of authentication, making them suitable for blogs and small websites.

The free version of the certificate does not offer the same features as organization validation or extended validation certificates. Organization Validation certificates provide a high level of assurance and are generally used to validate an organization or more significant sized business. Extended validation certificates assure your website visitors that they are visiting the official website for your business.

Another reason to avoid free certificates is that there are no safeguards in place to stop malware distributors from using these certificates to create websites that distribute malware. They can make them look official with the free certificates, and there have been incidents where this has happened.

The paid versions of certificates offer both extended and organization validated certificates, which are much more secure than a free certificate.

Paid SSL offers a more extended period of validity, while free certificates do not provide extended domain validation.

There is also limited support for free certificates, whereas paid certificates are available with full support if you have any problems with your certificate.

Certificate Renewal Options

Another difference between free and paid SSL is that free certificates last only ninety days before expiring. At the end of this period, users must exchange their free certificates for a new one.

Paid certificates are generally issued and last for up to two years, although there is a chance that the validity may be shortened to one year.

you should consider purchasing the paid version for your website to avoid a lot of the hassles associated with having a free certificate. There is also the added element of trust your customers will have when they visit your website.

Some of the leading paid certificate issuers are

  • Thawte
  • DigiCert
  • GeoTrust
  • Sectigo.

Visit out store to enroll for your premium certificates https://www.sslcertificate.ch/

SSL Certificates

SSL Certificates

SSL certificates

Why SSL certificates?

If you are trading online, an ssl certificate is the most probably the first thing you should think about. SSL don’t only encrypt data between your website and the customer, it also provide a business authentication ensuring your visitors they are dealing with the right entity.

Type of SSL certificates

The type of certificates available as well as their application mainly depend on the transactions you conduct on your site.

  1. Extended validation or EV: This certificate has the highest level of validation, it doesn’t only have a high level encryption; this SSL also validates your organisation name through the green address bar. We recommend this certificate for financial and trading websites.
  2. Organisation validate or OV: This certificate confirms the website owner’s identity as well as registration with the local business registrar. this can be used on mail server and non-transactional websites
  3. Domain Validated or DV: This is the lowest level of authentication and only confirms domain right of the certificate requestor; this is recommended for any internal websites.

Why use Prima Secure?

We all know how draining the SSL validation process can be,  here are some the added value for using Prima Secure:

  1. Validation: We pre-validate your certificate to anticipate any documentation the vendor will require in order to speed up the issuance process. our team handles all follow up so you can concentrate on running your business.
  2. Support: We keep all support in-house, this enable us to provide better service delivery; we will assist you from the certificate generation to installation at no extra cost.
  3. Discount: We extend our partner discount to our customer meaning we are able to offer up to 55% off on selected brands.
  4. Payment: as our customers are globally located, we offer billing in the following currencies:” USD, EUR, CHF & ZAR”. means of payment can be via bank transfer to our Swiss or South African bank, Credit Card, Paypal or 30 days net (T&C Applies)

Which brands do we sell ?

We are a registered and authorized partner pf the following brands:

  1. Thawte: Thawte SSL is one of the most recognized certificate brand on the market.
  2. Geotrust: Geotrust SSL provide a wide range of certificate from EV, DV, Wildcards and OV.
  3. Digicert: Digicert SSL with it secure site pro range provide the most robust certificate on the market.
  4. Sectigo: Sectigo SSL previously Comodo SSL is one of the largest certificate provider on the market.
  5. Positive SSL: Positive SSL provides a wide range of domain validated certificates.
  6. RapidSSL : rapidSSL is a Digicert own brands that provides domain validated certificates.

Please visit our ssl page for more info https://www.sslcertificate.ch/ssl-certificates/

Select your currency
USD United States (US) dollar
ZAR South African rand
EUR Euro
CHF Swiss franc