Why do I need a ssl certificate?

What is SSL?

SSL (Secure Sockets Layer) certificates are a key for secure Internet communications. They increase the confidence of visitors in the credibility of your website.

SSL certificates guarantee the authenticity of a website identity through a specific validation process executed by a certification authority. SSL certificates demonstrate that you have incorporated high security standards in the Internet communication. The certified SSL encryption assures that information is kept private between your server and the clients' browsers.

There are three categories of validation

1. Validation through domain authentication:
The authentication and issuance process verifies that the applicant either owns the respective domain or that he has the right to use that domain name.

2. Validation through full organization authentication:
Validation includes among others business identity authentication, domain name verification and verification that the organizational contact applying for the certificate on behalf of the company or organization is an employee of that organization.

3. Authentication through Extended Validation (EV):
This is the highest level of authentication available with an SSL Certificate; a signed acknowledgement of the agreement from the corporate contact is required. With Extended Validation visitors using high-security browsers (e.g. IE7 or Firefox 3.0) see the address bar turns green when they visit the website, a visible sign that the site is highly authenticated, trustworthy and that the customers` information is secure. In addition to the Green Address Bar, high security browsers display the authenticated organization name and the CA that issued it. These features are immediately visible and give customers the confidence to complete their transactions.

SGC encryption

Some of the offered SSL certificates include SGC encryption technology (SGC = Server Gated Cryptography). These certificates automatically step up protection to a minimum of 128-bit encryption even if customers use older browsers which have limited 40-bit or 56-bit encryption capabilities.

Please note

The integration of SSL certificates requires an own webserver. You need some prior knowledge, for example how to create a CSR file.

Ordering process

Various details must be specified during the ordering process.

  • Please make sure that the WHOIS information that you specify in the shopping cart is complete. All entries are mandatory fields, even the "title".
  • The required approver e-mail address must belong to the same domain for which the certificate is ordered and must already be available.
  • You can only use the suffixes from the drop-down menu for the approver e-mail.

Available are:

  • admin@mydomain.com
  • administrator@mydomain.com
  • hostmaster@mydomain.com
  • webmaster@mydomain.com
  • postmaster@mydomain.com

Example: How to create a CSR file

Please replace „www_example_com“ with your domain name in the following example how to create a CSR file.

If you use Linux, please enter the following command in order to create a CSR:

openssl req -new -nodes -newkey rsa:2048 -keyout www_example_com.key -out www_example_com.csr

Details for the CSR

Now the details for the CSR are requested.

Country Name (2 letter code) [AU]: DE
State or Province Name (full name) [Some-State]: Saarland
Locality Name (eg, city) []: Saarbruecken
Organization Name (eg, company) [Internet Widgits Pty Ltd]: My Company
Organizational Unit Name (eg, section) []: Hostmaster
Common Name (eg, YOUR name) []: www_example_com
Email Address []: info@example_com
Please note: We recommend to enter the approver e-mail here.

Please skip the last two input fields by using the Return key:

A challenge password []:
An optional company name []:

Example: Content

After you have created the CSR file, please enter its content in the lower text field. The content of the file www_mydomain_de.csr should look similar to the following example:

—–BEGIN CERTIFICATE REQUEST—–
MIIDUDCCArkCAQAwdTEWMBQGA1UEAxMNdGVzdC50ZXN0LmNvbTESMBAGA1UECxMJ TWFya2V0aW5nMREwDwYDVQQKEwhUZXN0IE9yZzESMBAGA1UEBxMJVGVzdCBDaXR5
Rq+blLr5X5iQdzyF1pLqP1Mck5Ve1eCz0R9/OekGSRno7ow4TVyxAF6J6ozDaw7e
GisfZw40VLT0/6IGvKs2jX0i+t58RFQ8WYTOcTRlPnkG8B/uV
—–END CERTIFICATE REQUEST—–

Important:

Keep both created files without fail!

Please note

  • The certificate is independent of the registrar.
  • An own server is required.
  • Certificates can not be used with our webspace.
Was this article helpful?
0 out of 0 found this helpful