• Follow us

Internet

Best SSL certificate services to buy from in 2019: Get the cheapest price today

Best SSL certificate providers

In the middle ages, the Knights Templar established the key processes for the modern system of notary services, banking, loans, and mortgages that we have today. During that era, Knights carried with them documentation that proved their identity, created by a notary, often embossed with official wax seals.

The importance of these documents was enhanced by a Papal declaration in 1139 that allowed the Knights Templar to pass freely through any border, pay no taxes, and be granted total freedom from every authority other than the Vatican.

Without the documents created by a notary, anyone could impersonate a Knight, and avoid the laws that applied to ordinary citizens throughout the rest of Europe.

And when it comes to the worldwide web today, we can draw a parallel with a similar document of authority: the SSL certificate. SSL Certification (or TLS to be more accurate) is a means to verify the source of web pages, domains, and open the door to information exchanges and electronic financial transactions.

But how do you pick a good SSL provider? Simple – read on and find out. First of all, we’ve got a list of 10 of our favored SSL certificate providers, although everyone’s needs vary, so following our list, we will engage in an in-depth discussion of all the criteria you should consider when picking the right company for you.

Below are the best SSL certificate providers of 2019 : 

Comodo SSL

Comodo SSL

1. Comodo SSL

A provider with commendably aggressive pricing

Comodo PositiveSSL (DV)

Very affordable

Good customer support

Validation can take time

As a highly affordable provider of SSL services, Comodo SSL has made some significant headway in the past few years.

Much of that success has been the result of very aggressive pricing, with a DV level ‘Positive SSL’ Certification costing just $7.27 (£5.5) currently for four-year coverage.

A ‘Premium’ SSL solution only costs $56.06 (£42.4) for four years. That package includes a fully validated certificate, 256-bit encryption and a $250,000 (£189,000) relying party warranty.But be warned, validation can take some time if the information required for Comodo SSL to complete the checking process isn’t available online. On the plus side, the company has excellent support people should you have installation or browser issues.

Techradar

___________________________________________________________________________________

DigiCert

2. DigiCert

This SSL provider snapped up Symantec

Digicert Standard SSL 1 Year

Tempting wildcard option

Bolstered by Symantec acquisition

Starting prices aren’t the cheapest

Having operated independently for some years, in 2017, DigiCert has completed an acquisition of Symantec’s website security and related PKI (Public Key Infrastructure) solutions. The motivation for this buyout was that Symantec managed to convince 90% of Fortune 500 companies to pay for the Norton Secured Seal.

These are now DigiCert’s customers, and the company has implemented a plan to transition those using Symantec products on to DigiCert when appropriate.

The starting price for an SSL Certificate is $218 (£172) per year, although you might be able to better that with a two-year deal. A wildcard option, covering unlimited servers and a complete multi-level domain, is $688 (£541) – an enticing prospect.

Entrust Datacard

Entrust Datacard

3. Entrust Datacard

A slick company run by experts in the security field

Entrust Datacard Advantage SSL 1 Year

Impressive reputation as swift operators

Ability to manage numerous certificates

Not the most affordable service

Based in the US, Entrust has been in business since 1994 and has garnered a reputation as a well-oiled machine for generating certification quickly and smoothly.

Entrust was built around a wide selection of security products: ID card printers, authentication systems, credit card printers and a PKI are all among its product lines.

With so much invested in secure systems, SSL certificates are considered one of its strongest offerings. Customers especially like the ability to manage numerous certificates across multiple domains from a management console.

Prices start at $174 (£130) per year for its Standard SSL single site product, climbing to $609 (£450) for a Wildcard SSL covering unlimited servers and subdomains. From what we’ve seen, most customers seem delighted with the service at all levels, seemingly justifying the extra cost over cheaper options.

GeoTrust

4. GeoTrust

Boasts a comprehensive selection of SSL certificates

Geotrust TrueBusinessID 1 Year

Great value at the high-end

Enterprise solutions can be tailored

Validation may be time-consuming

GeoTrust was once owned by VeriSign and then Symantec, and due to the sale of the latter operation, it might also be part of DigiCert by now. The business covers three main areas: SSL certificates, Signing Services and SSL for enterprise services.

Those looking for SSL certification will find that GeoTrust offers a comprehensive selection starting with domain-level and progressing up to its True BusinessID with EV level certification.

Pricing is more competitive at the higher end, so those wanting a single site certificate might want to avoid GeoTrust, but those needing EV or OV level products should take a look.

Enterprise solutions specifically tailored to government organizations, healthcare businesses and financial institutions are part of the GeoTrust range. Be prepared for identity checks to take longer than others, but the thoroughness of these checks has enhanced GeoTrust’s status.

GlobalSign

GlobalSign

5. GlobalSign

You get what you pay for here, with top-notch support

GlobalSign DomainSSL 1 Year

Excellent choice for enterprise customers

Scalable and flexible solutions

Not cheap

Where some operations have a wide client base, GlobalSign is very focused on enterprise customers, especially those who are looking to deploy highly scalable PKI solutions.

By taking this route, an enterprise customer can have all the rules, policies, and procedures for using SSL certificates, and their subsequent creation, distribution and revocation are all handled for them. But if you only want SSL certificates, GlobalSign can do that too.

Having the level of support and organization that GlobalSign delivers doesn’t come cheap, and even for a single site with only DV level certification, prices start at $249 (£189). For those wanting the full EV certification, expect to pay $599 (£455)  per year for a single site.

GoDaddy

6. GoDaddy

Web hosting giant also does SSL with an interesting spin

GoDaddy SSL 1 year

Pricing structure will work well for some

Excellent on the security front

Watch out for renewal prices

GoDaddy might be better known for its web hosting plans, but it’s also a big provider of SSL services.

Instead of offering DV, OV and EV certification at different prices, they all cost the same relatively low price. The pricing structure is instead based on a single site, multiple sites, or a domain with full subdomain cover.

Currently a single site, (DV, OV or EV level) costs $79.99 (£63.5) per year, and the all level domain solution is only $369.99 (£294) per year (at the moment you get 20% off for the first year). The return on that investment is the best SHA2 and 2048-bit encryption, and the trust seal provided by McAfee Secure.

One quirk of GoDaddy’s offering is that while the fresh installation is relatively cheap, renewal can be more expensive. If you can be organized enough to do fresh installs each year, you can save yourself a little money over simply renewing.

Network Solutions

Network Solutions

7. Network Solutions

Another web giant spins an SSL thread

Network Solutions SSL Basic 1 year

Tempting pricing

Speedy issuance

Question marks over customer support

In some respects Network Solutions is a little like GoDaddy, in that they both offer a wide range of web-related services, like domain names and e-commerce solutions, and SSL certification isn’t their sole focus.

What might attract customers is this firm’s pricing, with a base cost that starts at $59.99 (£45.5) with a 2-year term for a single site, rising to $403 (£309) for an EV level certificate that should be issued within five working days.

The weakness of this offering would seem to be the support team, which has been described in less than glowing terms by some customers. So given that, if you understand the details of installing certificates, then this might be for you, but anyone wanting extensive technical support may want to look elsewhere.

RapidSSL

8. RapidSSL

A provider aiming at smaller businesses

RapidSSL 2 Years

Impressively cheap

Uses GeoTrust’s global infrastructure

Installation tools are part of package

RapidSSL is owned by GeoTrust, another SSL provider we’ve already mentioned in this list. The business logic behind this is that whereas GeoTrust focuses on corporate giants, RapidSSL targets smaller businesses that are more cost-sensitive.

For just $17.95 (£13.6) per year, RapidSSL will provide a single domain certificate with 128/256-bit encryption with a browser recognition that exceeds 99%. A wildcard certificate that covers unlimited subdomains is $149 (£113) per year, plus it includes a $10,000 (£7,500) warranty and a 30-day money-back guarantee.

Free support is provided 24/7 by web and email, and installation tools are part of the package at no extra cost. And, even at this low price, the service is built on the same GeoTrust global infrastructure as the corporate customers benefit from.

SSL.com

9. SSL.com

Temptingly low prices are the star attraction here

SSL.com Basic 1 year

Very affordably priced

Strong customer service

Need longer-term plans to get best prices

If the most important metric of this sector is customer approval, then SSL.com is delivering the type of SSL service that wins friends and returning customers. Part of that equation is strong customer services and support teams, and the other element is competitive pricing which values those willing to commit for longer periods than a year.

A single domain level certificate starts at $49 (£36) per year but can be as low as $36.75 (£28) per annum if bought for five years. If you’re a smaller business looking for certification, SSL.com might be a good place to start.

Thawte

10. Thawte

A veritable SSL giant

Thawte SSL123

Great certificate management tools

Impressive browser compatibility

Nicely priced

The company is hardly a household name, but Thawte has managed to corral more than 40% of the global market for SSL certificates. So far it has issued nearly a billion certificates in 240 countries worldwide.

What’s helped the firm establish this position is the strength of its offerings, and selling points include impressive browser compatibility, excellent certificate management tools, and up to 256-bit encryption.

For those who need EV level certification, the price is $179 (yearly plan), and that comes with a promise to complete the background checks in one to three days maximum. The success that Thawte has had seems well grounded in a strong combination of customer satisfaction and affordable pricing.

Understanding SSL

The mechanism of SSL certification has two important functions: authentication and encryption.

As a means to authorize a connection, the SSL certificate holds information about the business, website or person you are connecting to, and is also a means to verify that identity through a third-party. 

If you wish to see this in action, look at the URL of this web page in the address bar of your browser, and alongside the text, just on the left, you should see a small green padlock that identifies that this is a secure SSL-certificated site.

Clicking on the padlock will tell you that the connection is secure and allow you to reveal what information the certificate has. That will include the users of the certificate, and the SSL provider that bestowed authorization.

In addition to authority and verification, the SSL certificate also includes a means to encrypt traffic between the user’s computer and the website. Without this encryption, sensitive information like passwords could potentially be compromised by a nefarious party intercepting the data traffic flowing between the client computer and the web server.

The security of this system is underpinned by another independent third-party, the trusted Certificate Authority (CA), which issues the SSL certificate under strict guidelines.

Very much mirroring the phrase ‘my word is my bond’, the support of a CA with an SSL certificate is a declaration of trust in a person, company or website. And the CA is in turn verified by a Root certificate holder, proving that they are trusted to issue certificates and revoke them where necessary.

Should these trusted relationships fail, the SSL certificates become invalid. In that case, anyone visiting a location covered by one such certificate would immediately be warned that it has no valid SSL certificate, and that their connection may no longer be secure.

As you can imagine, the impact that a revoked certificate would have on a live business would be very serious. So it’s vital that you get your SSL certificate from the right source, backed by the most respected CA.

Having inherent trust where identity is concerned is necessary, but having the right level of certification for the business is also very important.

Special relationships

When people talk about SSL certificates, it is easy to assume that they’re all the same. But depending on who authorized them and how diligent the background checks were, they come with different levels of validation.

Here are the four levels of validation most commonly used:

Self-signed. At first glance, the idea of self-signed certificates seems mildly ridiculous, because looking in the mirror and confirming that the reflection is indeed you won’t work at passport control. However, if the purpose of these certificates is to control traffic on an internal corporate intranet, it works well enough, and avoids the browser repeatedly complaining about unsecured web locations.Domain Validation (DV). The next rung up is the Domain Validated SSL certificate, which is purely a confirmation that the web pages are truly coming from the expected domain and not some other. It says nothing about the person or business in question, just that they own a domain.Organization Validated (OV). The highest level of validation that an individual can aspire to, and high enough for many businesses. Company credentials and those of the named owners are checked against extensive databases, including those held by local governments.Extended Validation (EV). The pinnacle of SSL issuance is the fully authenticated SSL certificate, needed for any company that wants to offer their customers secure web locations, email and financial transactions.

While self-signed and domain level certificates have their uses, it’s the OV and EV levels that businesses truly need. Because they prove that a company has domain ownership, a genuine business, and that the certificate was applied for by authorized personnel.

As it’s reasonable to expect, checks of this type take time. Therefore, applying for and being granted an authenticated SSL certificate is not something that can happen five minutes before a new web venture is about to go live.

The other element that separates one SSL certificate from another is the level of encryption that it applies, and exactly how secure that makes it.

Encryption

The model for SSL certificates allows for them to use 128 or 256-bit encryption, should the client’s browser support it. Calculations show that it would take a supercomputer 13.75 billion years to test every permutation of a 128-bit encrypted code.

And, for good measure, the initial handshake is performed using an ultra-secure 2048-bit RSA key. Once past that awkward first date, SSL communication is usually continued with 128, 192 or 256-bit, as without quantum computers these are practically uncrackable, and they put less stress on the computers encrypting and decrypting at either end.

Most providers are offering 256-bit encryption these days, but that’s only valid when the web server, client computer operating system and browser can all operate at that encryption level.

Old operating systems and browsers can force encryption levels to 40 or 56-bit, even if the certificate they’re accessing is capable of 256-bit.

While you can’t entirely control the client end, the minimum requirement for encryption should be 256-bit at the server end, period.

What makes a good SSL purchase?

There is a temptation to make choices entirely based on cost, especially if you have lots of sites to cover or a dynamic business environment.Poor decisions can have big cost implications, and changing direction once you have a consumer-facing solution isn’t ideal.

The following factors should play a part in picking the right issuance operation for you:

Period of trial - Before anything goes live you’ll want to test it, yes?Browser compatibility - With so many computers still running Windows 7 and even older releases, working with older browsers is still a major concern.Issuance timeframe - When deadlines are in play, time can be critical should a new certificate suddenly be neededTrust level type - The trick is to match the needs of the web location with the level of security and trust needed. If you don’t do financial transactions, then EV level security probably isn’t required. Not all firms offer OV level certificates and some companies try to charge for self-signed, amazingly.Trust site seal - Providing a recognizable seal that the public can see is an easy way to let your customers know that a site is secure and that their information is safe.Support of SSL experts - The subtle nuances of SSL and certification can befuddle even the most astute IT people, so having an SSL support team available is critical.Refund policy - Entering a business relationship assuming it will go sideways isn’t a particularly positive viewpoint, but knowing that your money will come back if needed is a sensible precaution.Warranty policy - Some CAs cover errors in identification, loss of documents or intentional/accidental errors. These warranties might have implications for those companies that self-insure.

You might also want to check out our hosting guides:

Read More



Leave A Comment

More News

TechRadar: Internet news

Microsoft's dual-screen Surface device may use liquid-powered hinges 2019-09-14 13:49:48New patent reveals a foldable, dual-screen Microsoft device to boast fluid-filled hinge.

Apple is neglecting the MacBook in favor of 2019-09-14 11:30:54As Apple fawned over its latest expensive smartphone, its silence about a new MacBook was deafening.

The LG G8X ThinQ has a secret weapon 2019-09-14 11:00:03No more sticky fingers in the way of your headshots, thanks to LG G8X ThinQ's novel second display.

Oculus Insight: how Facebook unplugged VR and opened 2019-09-14 10:00:00We talk to Facebook Zurich about the challenges of making VR accessible, and its plans for the future of virtual reality.

More details of Facebook's video streaming Portal box 2019-09-14 09:30:58The next Portal box could bring Netflix and Disney to your TV, as well as letting you make audio and video calls.

The 'magic' buttons on this Mercedes-AMG CLS 53 2019-09-14 07:00:00A big step towards in-car controls that are as intuitive to use as an iPad.

Final Fantasy 7 Remake has a turn-based ‘Classic 2019-09-14 05:45:14Final Fantasy 7 will have a Classic Mode for those who prefer turn-based combat to real-time action.

The Pixel 4 camera app leaks, showing off 2019-09-14 05:30:30Photo and video capture is sure to feature heavily in the Pixel 4 reveal, and now we know more about what to expect

Fury vs Wallin live stream: how to watch 2019-09-14 05:25:54Tonight's the night - watch the Gypsy King in action in Sin City. See how to live stream Fury vs Wallin from absolutely anywhere.

Pokémon Sword and Shield release date, trailers, and 2019-09-14 04:46:08Everything you need to know about the latest generation of Pokémon games, Pokémon Sword and Shield.

Official Sword and Shield website teases a brand 2019-09-14 04:39:46Game Freak and The Pokémon Company have posted a mysterious teaser for a brand new Pokémon.

iPhone pre-orders are live: these are the top 2019-09-14 04:19:47Get in early on Apple's latest trio of handsets - we've found the best iPhone 11, iPhone 11 Pro and iPhone 11 Pro Max deals you can pre-order.

TechCrunch » Enterprise

The mainframe business is alive and well, as 2019-09-12 09:58:48It’s easy to think about mainframes as some technology dinosaur, but the fact is these machines remain a key component of many large organizatio

SmartDrive snaps up $90M for in-truck video telematics 2019-09-12 08:52:30Trucks and other large commercial vehicles are the biggest whales on the road today — are they also, by virtue of that size, some of the most da

IBM brings Cloud Foundry and Red Hat OpenShift 2019-09-12 03:29:57At the Cloud Foundry Summit in The Hague, IBM today showcased its Cloud Foundry Enterprise Environment on Red Hat’s OpenShift container platform

Kubernetes co-founder Craig McLuckie is as tired of 2019-09-11 10:05:47“I’m so tired of talking about Kubernetes . I want to talk about something else,” joked Kubernetes co-founder and VP of R&D at V

Explorium reveals $19.1M in total funding for machine 2019-09-11 09:44:56Explorium, a data discovery platform for machine learning models, received a couple of unannounced funding rounds over the last year — a $3.6 mi

ScyllaDB takes on Amazon with new DynamoDB migration 2019-09-11 08:24:54There are a lot of open-source databases out there, and ScyllaDB, a NoSQL variety, is looking to differentiate itself by attracting none other than Am

HashiCorp announces fully managed service mesh on Azure 2019-09-10 12:48:50Service mesh is just beginning to take hold in the cloud-native world, and as it does, vendors are looking for ways to help customers understand it. O

HashiCorp expands Terraform free version, adds paid tier 2019-09-10 11:01:24HashiCorp has had a free tier for its Terraform product in the past, but it was basically for a single user. Today, the company announced it was expan

Payments giant Stripe debuts a credit card in 2019-09-10 11:00:27Last week, when the popular payments startup Stripe made some waves with its first move into money lending through the launch of Stripe Capital, we re

Work Life Ventures raises $5M for debut enterprise 2019-09-10 10:00:55Brianne Kimmel on her debut fund: "I want to be mindful that I am a female GP and I feel honored to have that title."

New investment firm wants to change the way 2019-09-10 09:27:09The three founders of York IE have a vision about how to change the way early stage startups get funding. They have experience shattering norms, havin

Snyk grabs $70M more to detect security vulnerabilities 2019-09-10 09:11:23A growing number of IT breaches has led to security becoming a critical and central aspect of how computing systems are run and maintained. Today, a s


Disclaimer and Notice:WorldProNews.com is not responsible of these news or any information published on this website.