What is an SSL security certificate?
In most sites you visit, you may notice that the site starts with https, not HTTP, and is written in green (a sign of security),
What does the S character mean here? What security are we talking about? Why does Google show the word not secure clearly on its browser Chrome when you browse a site that does not use an SSL security certificate?
The protocol on which the Web sites operate is Hyper Text Transfer Protocol, on Exit No. 80.
(Suppose that correspondence is made through numbered tubes, and here the protocol uses tube number 80),
the problem with this tube is that the communication is not encrypted, which is in some cases normal (Or it was as if it was already as we will see shortly), but sites that require user interaction, such as password-login,
purchases, electronic payments, or so on, even if the site is content only as you currently read it, It must use a protocol that is more secure than HTTP,
the encrypted version of HTTPS as a abbreviation of secure, and that works on output (tube) 443, i.e. a protocol that is completely different from HTTP.
It was previously normal for sites to operate on ordinary HTTP protocol, but because it was important to know the data encryption and messaging of all Internet users, the use of HTTPS expanded over the past years, so Google in 2014 considered encryption one of the site ranking criteria and page in search engine results. The so-called SEO search engine optimization, and several years later, began with the word not secure as we saw it at the top, to encourage a secure Internet culture among all users.
We have now understood the meaning of using this protocol, it is now that we know how to use it, and is it available to everyone and free of charge like HTTP? Which is the secure SSL certificate free of charge?
How does HTTPS work?
To use HTTPS, you must install the so-called SSL certificate, abbreviated for secure Socket Layer, and to bypass all the technical concepts here, this certificate allows the server on which the site (hosting) communicates and transfers data with your browser (such as Google Chrome) using a high security level, i.e., to browser the site, and to send you any data to it (E.g. filling out a form, password, payment card) will be encrypted using different encryption methods, ensuring that data is not transferred as readable text if someone steals data as it travels between your browser and the location you’re browsing.
On the other hand, the certificate gives the website credibility that its owner is known (at least as the two-day name) as we will see shortly, and in some types it can be confirmed that the site belongs to a company officially registered according to the type of SSL certificate used.
Is the SSL security certificate free?
Yes and No, there are many types of SSL security certificate depending on the requirements of the site, their reliability and the credibility of the issuing authority, which are essentially created by companies on different encryption grounds, and sold (or offered free of charge, more shortly) to customers who install these certificates on their sites. The price of a paid certificate ranges from $30 to $hundreds per year (it is, of course, renewed annually), and of course there are non-profit entities like Let’s Encrypt (i.e.: Let’s enlist) free SSL certificates, compatible with most types of hosts today, by collaborating with CPanel and global hosting companies to facilitate the certification process, and if you want to verify with your hosting company if it supports this certificate, you can search this list.
What are SSL security certificate types?
SSL certificates are divided into 3 degrees, we will talk about them in some detail here:
1.Domain validated Certificate of Domain Verification
They are the lowest degree of certification, and they work for sites that are like BLOGS or sites that do not need advanced encryption foundations, those sites that offer content only do not need to send data from the user in the most likely way, so there is no problem using them in BLOGS and microsites.
This certificate tells you that the site range is registered and known and is true, verified using the domain owner’s registered mile, the certificate uses 256-bit encryption, like others.
This certificate takes no more than minutes to issue, as it is almost automatic without human intervention
By the way, if your host supports the CPanel control panel, you can often obtain this type of certificate for free, and we’ll explain this in another article on how to install the SSL certificate for free.
When you are a website owner, or there is interaction between your site and users, especially purchases and exchanges of data, we recommend using a higher SSL security certificate score, such as Type II and Type III.
2.The Organization Validated Certificate
If your site requires users to enter some of their data, or you have applications on the site that require users to register (such as games), this SSL security certificate is your best option, as it not only ensures the credibility of the two-mumen owner such as type one, but also requires additional proof of the site owner (two days). Such as a company registered with official papers, statements of accounts, etc., depending on the terms of the issuer of the certificate, the certificate authority CA. The issuance of the certificate is required from one to three days by the issuer as well.
A technical registered company, which is not different from the previous one, the two use the same 256-bit encryption, but the difference is what we have made in the first point, which ensures that users of sites that have this type of certificate will be confident that the site is registered and officially in the country where the site is located. Hawi’s site cannot steal their data if any information is filled in.
We use this certificate for our website loinns.com, as you can see in the address bar (to learn about the certificate information, click the lock sign next to the site name, and then choose Certificate, the certificate information and its source will appear completely)
There are several subtypes of this certificate, or to transfer features, Like Wildcard Validation, which allows the site owner to create infinite sub-mum mum under the name of the main domain, all remain certified using the original domain’s parent certificate, and there is a multi-domain validation feature that allows the site owner (domain) to install the certificate on more than two days he owns.
This type is suitable for all medium and large electronic sites and stores (even international as we will see shortly) on which electronic purchases and sales are made so that the certificate guarantees that the site is real, and that the information you provide to the site is encrypted and secure, and this type can be collected for $50-$200 or more.
3.Extended Validation Certificate
This type of SSL security certificate is not needed by the majority, because it requires more complex procedures than the second type of organization validation, which is what it distinguishes by showing the company name in the address bar next to the two domain, and the country where the site is registered, such as this image:
Extended Validation SSL security certificate
This certificate states that the Site is registered in the State of Ireland, in the name of an official register Hostedo Limited, and the Certificate warrants that the Site Owner has been contacted to ensure that it is a physical site and has the identification papers to prove it.
You will be surprised to say that in terms of encryption type (security) this type is no different from the previous ones, its usefulness (only) and specialized companies say that issuing SSL certificates gives a “reassurance” to a site visitor if he wants to buy from the site, or enter sensitive information such as his credit card information. Even when there is a scam attempt to steal website visitor information by tampering with the domain name (suppose that someone used Amazon instead), they cannot get the company name visible next to its fake site.
Do all online stores or websites need this type of certificate?
There is a great controversy between Trasseer and Data Encryption specialists about this type of certificate. If you have a quick look at the largest global sites, you will find that most of them do not use this type of certificate, why? Because they see the Organization Validation certificate enough to prove that the site and its company are registered and genuine, and the company name does not need to appear next to the two mummies, some examples are:
What do you think? These are the world’s largest sites, and all use only the OV SSL certificate, so who uses it?
For honesty, the most frequently used sites of this type of certificate are those that profit from selling it, in short, the sites that sell SSL certificates such as Digicert, the Global Sign site and theSSLstore, we mean the largest of them, Thessalonstore.
What do we mean by this?
In fact, this type of certificate is marketing and has no effect as it was before, and only the companies that sell it benefit from it, and even many browsers on phones no longer show the company name in the address bar (space is limited, only the name of the site or the domain appears). This is why the major global sites have left this trend, encouraging people to use the Organization Validation Certificate.
Any questions or questions left? Ask us in the comments or contact us and we’ll be happy to help you.