Contents
- What is an SSL certificate?
- How does an SSL certificate work?
- Types of SSL certificates
- Validity periods of SSL certificates
- How to obtain an SSL certificate?
What is an SSL certificate?
An SSL certificate is a digital certificate that verifies the authenticity of a website and protects user data. The abbreviation SSL stands for Secure Sockets Layer, which means "layer of secure sockets." This signifies that a website with an SSL certificate provides reliable protection for its users, significantly reducing the risk of fraud. If a resource has an SSL certificate, the browser's address bar displays the prefix HTTPS, with a lock icon preceding it.
In contrast, websites without an SSL certificate start with HTTP, and the lock icon in the address bar will be crossed out. This indicates that user data may be vulnerable and at risk of cybercriminal attacks. By clicking on the lock icon in the browser, users can view important information about the certificate, including:
- the domain name of the certificate owner;
- the name of the issuing authority;
- the date of issuance and validity period;
- associated subdomains;
- the public key.
How does an SSL certificate work?
The operation of an SSL certificate involves ensuring secure data transmission between users and a website. This is especially important for online stores, banks, and other organizations where confidential data is entered. The process of using an SSL certificate involves several stages:
- The browser or server initiates a connection with a website secured by an SSL certificate and requests its identification.
- The web server sends a copy of the certificate.
- The browser checks the validity of the certificate. If it is trusted, confirmation occurs.
- The server receives confirmation, and a secure connection is established.
The entire process usually takes just 2-3 seconds with a good internet connection.
Types of SSL certificates
There are several types of SSL certificates that vary by the level of protection:
- EV SSL — Extended Validation certificates that provide maximum protection for legal entities.
- OV SSL — Organization Validation certificates for e-commerce businesses that require verification of business legitimacy.
- DV SSL — Basic certificates available to any domain owner that provide reliable data encryption.
- Wildcard certificates — Allow protection of multiple subdomains from a single domain name.
- MDC — Multi-domain certificates that protect up to 250 subdomains simultaneously.
It is important to remember that fraudsters can create phishing sites and install basic SSL certificates on them, misleading users. Therefore, always check the website address and the presence of a blue checkmark in search results.
Validity periods of SSL certificates
The maximum validity period of an SSL certificate is 27 months. This is due to the need for regular verification of the company's information. Previously, certificates were issued for 5 years, but the period has gradually been reduced to 2-3 years to enhance security.
When a certificate expires, users may see a warning that the site does not meet security requirements. To avoid such situations, it is advisable to use certificate management platforms, especially for large companies with multiple websites.
How to obtain an SSL certificate?
SSL certificates are issued by trusted certification authorities that guarantee quality and security. The process of obtaining a certificate involves several steps:
- Setting up the server and checking the WHOIS record.
- Creating a Certificate Signing Request (CSR).
- Submitting the request for verification of domain and organization data.
- Installing the obtained certificate on the server.
Simple DV SSL certificates can be issued in a few minutes or hours, while more complex certificates, such as EV SSL, may take up to a week. There are also free SSL certificates that provide a basic level of protection and are suitable for small sites but require regular registration and verification.