SSL FAQ

What is SSL?
SSL stands for Secure Sockets Layer. It is an encryption layer that encodes information that is exchanged between a client and a server, protecting the transmission of sensitive and private data.

Why do I need an SSL certificate for my site?
If your site sends or receives sensitive information, including accepting payment information, account information, or if your site includes a log-on feature, then your site should be secured with a certificate.

How does SSL work?
An SSL certificate is a file installed on the web server that a web site is running on. This file is composed of two segments. The first is the public key, which encrypts data. The second is the private key, which decrypts data. When a client, such as a web browser, connects to an SSL secured server a unique session is created using these two keys. All data transmitted during this session is protected, and cannot be decrypted by any party other than that specific client and the server.

What is the difference between a domain validation certificate and higher assurance certificates?
Higher assurance certificates such as Organization Validation and Extended Validation require the certificate authority (the company issuing the certificate, such as GeoTrust or VeriSign) to verify the purchaser's business and their authority to purchase a certificate on behalf of that company. Domain Validation certificates only verify the domain ownership of the purchaser, and thus have much faster turnaround times since none of the additional information needs to be verified.

What benefit is there to purchasing a higher assurance certificate?
Low assurance certificates that perform domain only verification only encrypt the connection. Higher assurance certificates perform the same encryption, with the addition of the peace of mind for your visitors knowing that the certificate authority has already validated your site as belonging to a legitimate business.

How many domain names does a certificate secure?
The SBS certificates support the domain name and the "www" record. You can only secure one domain name per certificate.

Do SSL certificates work in all web browsers?
SSL Certificates are compatible with 99.9% of all browsers, including all major web browsers.

What is a CA?
CA stands for Certificate Authority. A CA is the company issuing the certificate that does all of the verification involved and provides the certificate to the purchaser.

What is a CSR?
CSR stands Certificate Signing Request. A CSR is a special key generated by a web server using that server's unique private key. The CSR is then sent to the CA, which is then used to generate the final certificate.

What is SGC?
"Server Gated Cryptography" ("SGC") was developed for legacy computers and browsers that only support 40 or 56-bit SSL encryption to "step up" to 128-bit SSL encryption. Without an SGC certificate, Web browsers and operating systems that do not support 128-bit strong encryption will receive only 40- or 56-bit encryption.

What does the green address bar do?
The green address bar is a quick and intuitive way to ensure visitors to your site that your business is legitimate and safe. The green bar is only available with Extended Validation (EV) Certificates. Major web browsers, including Internet Explorer and Mozilla Firefox, have integrated anti-phishing protection so that known phishing sites will display a red address bar, whereas sites secured with an EV SSL will display a green address bar – letting visitors know that your business is good to go! Studies have shown a strong, positive impact for businesses that adopt EV SSL – for more information, contact our Sales Department.

I changed web servers, and my certificate no longer works. Can I get the certificate reissued?
Yes. On your new web server, generate a new CSR for your certificate. For most CAs, you can contact them directly with the new CSR and they will provide you with a new certificate. Please see our knowledge base for specific details.