SSL, the most important certificate on the Internet - what do you need to know about it?
4 June 2022
The internet offers a lot of opportunities, makes our lives easier and saves us time. Unfortunately, it also poses risks, one of which is data theft. In order to be able to securely connect to the network, make purchases and make payments, for example, it is necessary to encrypt data. This is where SSL certificates come in. What is worth knowing about them?
Not all certificates are the same. Depending on the type of validation, they offer different levels of security for your site. In this text, you will read about what an SSL certificate is, what types of certificates there are, which one will be best for you and how to add an SSL certificate to your website.
SSL certificate - what is it for?
An SSL (Secure Sockets Layer) certificate is a network protocol that secures the transfer of data between the server and the browser window by encrypting sensitive data. It is now a standard website security feature that protects data from unauthorised access and ensures secure transactions.
A website certificate is necessary for all sites that collect data from their users, whether it is information relating to an e-mail box, addresses or financial files such as a bank account number. We are therefore mainly talking about sites that offer newsletter sign-ups and online shops.
The idea behind the SSL certificate was to design a universal protocol that can be used by various application protocols such as HTTP, FTP, DNS, Telnet, NetBios, HTTPS. An SSL certificate is just such a solution.
There are different types of SSL certificates, which are divided according to the level of encryption. There are both free SSL certificates and paid versions, which you will read more about later in this article. The distribution of certificates is controlled by the CA Security Council (CASC), a certification authority. This is an organisation that is responsible for verifying the identity of entities that apply to secure an SSL site. 
Types of SSL certificates
You already know what an SSL certificate is. However, it is worth noting that not all protocols are the same. Due to the level of reliability of the encryption of the connection, we distinguish between certificates:
- SSL DV - (Domain Validation) - validation by domain. This is one of the more popular certificates, unfortunately with low reliability. In order to obtain it, it is sufficient to provide a domain, which must be registered to company data and be able to confirm access to it, e.g. by verification by mail from the service domain. This certificate covers the domain and its web subdomain and gives information only about the domain, not about its owner.
- SSL OV - (Organisation Validation) - validation by organisation. In terms of encryption, this is a protocol with the same reliability as DV. It is better rated in terms of security because, in addition to the domain information, it also provides information about the company that owns the domain. If this SSL site security is implemented, the company data is checked against the entry in the relevant register (KRS, CEiDG). This certificate costs more than a DV certificate.
- SSL EV (Extendem validation). This is a security feature with the highest level of security. If an EV certificate is to be implemented, in addition to the verification of the domain and the associated company data, the applicant must confirm his identity, which often generates additional costs. Besides, the SSL EV certificate is the most expensive of all available certificates.
The financial breakdown of SSL certificates is as follows:
Free Letsenscrypt certificates - these certificates provide the same level of security in terms of encryption as the paid counterparts, but are not guaranteed by the issuer. They are anonymous and have a limited validity period (usually 3 months). However, it is possible to automate the certification renewal process. Free certificates allow domain validation (DV) and are distributed by organisations such as Letsencrypt. For several years, Letsencrypt has allowed certificates to be generated for all subdomains within a domain (Wildcard).
How much does an SSL certificate cost? Prices of paid certificates range from a dozen or so zlotys to several thousand per year. The choice of the appropriate package is related to the area of activity of the company, the type of operations that users perform within it and other aspects.
Before you are tempted to buy a certificate at a very low price (under £100), check how much it costs to renew it. Providers often offer to buy an SSL at a low price with a high renewal cost.
SSL - why is it so important?
An increasing part of our lives is moving online. In addition to browsing the Internet, we place orders, send documents and transfers, submit applications, etc. During many of these operations we give out our confidential data and certainly no one wants it to be intercepted by any unauthorised person.
What an SSL certificate gives you:
- Secure online communication - the certificate protects the data of your website's users, making them feel more secure, which can translate into them being more likely to take up your offer.
- Authentication - the certificate certifies the identity of the entity to which it was issued.
- Credibility - a domain with a certificate is much more trustworthy, which has a positive impact on customer feedback.
- Higher search engine ranking - the job of search engine algorithms is to provide users with the best possible answer to their questions. Certified sites are ranked higher by Google because it is a signal to the algorithm that the site owner cares about the safety of its users.
- GiODO/ RODO compliance - security certificates ensure secure data transmission, therefore fulfilling the obligation of database owners to secure the information contained in their databases.
Search engines send appropriate messages to inform users that they are on, or attempting to access, an unsecured site, which may discourage internet users from visiting it. Websites that use SSL encryption are characterised by a distinctive padlock mark, visible in the address bar of the website, right next to its address.
What is SSL encryption?
How does an SSL certificate work? When a web user uploads their data to the server of a website they are using (e.g. to place an order), the SSL protocol encrypts their data so that it cannot be intercepted. The certificate protects the data already in the browser and in this encrypted form it is sent to the server, so that no one can see it in the event of an attack.
SSL certificates use asymmetric encryption, which is made possible by two keys: a public and a private key. Information encrypted with the public key can only be read with the private key and vice versa. In addition, this encryption still requires a third session key, which encrypts the data transfer sessions. This is the so-called intermediate key. 
How do I obtain an SSL certificate?
An SSL certificate can be obtained in several ways. Nowadays, most providers offer an SSL certificate as standard in the hosting price, which is a convenient solution. You can also get this security yourself by generating a Letsencrypt SSL certificate.
This does not usually require action on the server side, only the ability to edit DNS descriptions. The third way is to purchase a certificate and request verification of the entity by a company that is authorised to do so by the certification authority. The verification includes data on the company and telephone verification. Once this is completed, your certificate can be deployed on the site. It takes from a few days to about two weeks to obtain this verification.
If you are wondering where to buy an SSL certificate, you should know that the choice is huge. Almost all hosting providers now distribute certificates. Implementing it on the server is a standard part of the developers' offer.
Can you generate the SSL certificate yourself?
In order to obtain a confidentiality certificate, it is necessary to generate a key and a CSR (Certificate Signing Request). Both of these actions can be performed independently.
A dedicated website can be used to generate a private key. There are more and more of these every year, so no one should have problems finding the right one. When generating the key, it is necessary to enter a password that will protect access to it.
The next step is to generate the CSR. During this process, the password for the private key must be entered. In response, you will receive the corresponding file, which, once authorised, is already a valid certificate. Now it just needs to be deployed.
How do I install an SSL certificate?
Implementing an SSL certificate is a two-stage process. The first stage involves purchasing (if we have a commercial certificate) and installing the certificate on the server. The second stage involves activities on the website, i.e. setting up appropriate redirects.
How do I install an SSL certificate on a site based on WordPress or another popular CMS? For sites with a CMS, the process of implementing a certificate is usually simplified to a few clicks so that even a less technically savvy site administrator can manage it.
Many CMSs have special plug-ins designed to install certificates on the WWW. Depending on how your website is written and your level of technical expertise, you can install the certificate yourself or use the help of a developer.
All you need to do now is check that the certificate has been implemented correctly and actually protects your website users' data. To do this, simply display the page in your browser and check whether a padlock appears in the bar next to the address. If so, the certificate is correctly installed and active.
In conclusion, security issues are very important on the Internet: if you operate through this medium, you need to be aware of it. SSL certificates are now a security standard that you need to address in order to be more trustworthy in the eyes of your customers and when you take care of your website's SEO. A website certificate is also very important in terms of SEO.
Choose InPost Subscriptions for businesses and send parcels at a fixed price.
Take one minute to leave your contact details and start sending parcels from as low as 11.89 PLN*.
- One contract for courier and Paczkomat shipments
- Free courier pickups
- Express delivery
- Price guarantee for the duration of the contract
- Fuel surcharge included
- Dedicated post-sale support
* Net price per Paczkomat shipment in the Subscription 600 plan.
Czytaj również
