View Single Post

  Post #9 (permalink)   03-05-2018, 01:18 PM
HD Wizard
easyhostmedia's Avatar
Join Date: Mar 2011
Location: Northumberland, UK
Posts: 5,535
Send a message via MSN to easyhostmedia

Status: easyhostmedia is online now
Originally Posted by bigredseo View Post
We were big believers in the Green Bar when we ran our eCommerce sites, and still recommend users to purchase them for that extra level of "implied" security that a user gets when they see the EV Green Bar.

But it's still only implied security. You could change the URL bar with CSS if you wanted

But why?

It used to be that CA was built into browsers etc, so that's why you bought from the big guys (verisign, comodo, geotrust etc), but with LetsEncrypt, that's built in now too, so there's no compatibility problem or trust issue as a result.

So why pay? The Insurance (10k, 100k Warranty etc) is only paid out if the encryption is be broken (which it never has been). It doesn't cover for fake transactions etc.

So why get is a Paid one NEEDED versus a free one?

And to clarify for everyone, I'm not picking apart anyone selling an SSL, I used to sell them when I ran hosting and we made a pretty penny doing so. I'm really wondering how (in the past 5 years that I've been out of hosting) has the SSL world changed with the free SSLs on the market and why users should not use them for commercial sites.

Drawbacks of installing a Free SSL Certificate
Just like free web hosting services, free SSL certificates also come with certain limitations and risks:

Domain Validation only — since these certificates come with no cost and are issued within a few minutes, they are limited to one single validation option — Domain Validation. This may be perfect for a small website or blog, but it’s not the best option for larger websites which are collecting personal information about their users.

Unsuitable for e-commerce — free certificates are not recommended for securing credit card and personal information on e-commerce websites. To make customers trust your business, you need a certification of your authenticity, which is provided only by paid Business Validation or Extended Validation SSL Certificates.

May hurt your customers’ trust — as a consequence of the above, your customers may not trust you simply because you aren’t willing to invest in an SSL Certificate issued by a reputable Certificate Authority. This lack of trust may significantly affect your reputation, especially in case of questionable CAs.

Limited lifetime — free certificates are issued for a limited period of time, usually 90 days. On the other hand, paid SSL Certificates are offered for 1 or 2 years, so you don’t have to get them reissued and installed so frequently.

Tardy customer support — free SSL issuers usually provide limited customer service, so issues aren’t resolved in a timely manner.
Benefits of choosing a Paid SSL Certificate:
There are many reasons why you should opt for a premium SSL Certificate. However, the most important benefits are:

Recognition — a certificate issued by a reputable Certificate Authority makes a website seem more reliable to any customer. With paid certificates, clients have the right to report any issue to the CA, which is obliged to immediately investigate them. As a result, clients feel safer having their backs ensured by trusted CAs.

Different options — paid SSL Certificates are issued in all three validation options — Domain, Business, and Extended Validation. There are also different certificate types based on the complexity of the website, One-Domain, Wildcard, and Multi-Domain SSL Certificates, along with Code Signing SSL Certificates for securing downloadable software and digital goods.

Extended lifetime — currently, paid certificates are issued for one or two years. This means that your business will run smoothly and your website will stay secured for a long time without you worrying about the renewal of your certificate.

Server compatibility — premium certificates can be used on any hosting services as well as self-managed or dedicated servers, making the setting up process free of any limits.

Liability protection — when purchasing an SSL certificate, you typically get a warranty which is an insurance that covers any damage incurred as a result of a hack or data breach caused by a flaw in the certificate. The warranty amounts range from $5,000 to $1,500,000 which means that the higher value — the more extensive the warranty is.
Terry Robertson - CEO The Easyhost Media Group
PowerSSL - - We Secure your World
The Scamlist Forum - Fighting against scammers