SSL Certificates
Extra security for your website
An SSL certificate protects the private information you collect from your customers such as credit card details, passwords, and logins. It is an easy and cost-effective way to legitimise your website whilst protecting your site against phishing, and boosting your search engine ranking.
PositiveSSL offers basic protection, but for those of you needing better protection, you can take a look at our SSL certificate comparison chart and choose one to suit your business and your customers.
Why you should choose a Domain Central SSL certificate?
You’ll get the highest levels of security the industry offers. Our certificates work with the majority of browsers, applications and devices, and they protect an unlimited number of servers. Our partner and Certificate Authority, Sectigo, has over 20 years’ experience. It will only issue an SSL certificate once a company’s completed rigorous validation. Here’re more reasons why you should choose our certificates.
- Each SSL certificate includes the SHA-2 algorithm (SHA-1 certificates are now vulnerable and raise an alert in most browsers), and 2048-bit issuing authority.
- Phishing alerts of potential attacks, so website owners can regain control of their sites quickly.
- There’s a wildcard option with Domain, and Organisation certificates which means you can use the certificate on an unlimited number of subdomains and servers.
- Cool bonus! Google have stated that a website secured with SSL (https) will have an improved search ranking.
Single domain SSL Certificate Plans
Give your customers peace of mind with an SSL Certificate from one of the world’s leading provider, Sectigo.
| Sectigo PositiveSSL DV | Our Most PopularSectigo Domain SSL | Sectigo Organization SSL | Sectigo Extended SSL | |
|---|---|---|---|---|
 |  |  |  | |
| Issuance speed(After all documentation is received) | < 3 mins | < 5 mins | 1 day | 1 day |
| Level | Domain | Domain | Organisation | Extd. & Org. |
| Warranty | $50,000 | $500,000 | $1,000,000 | $1,750,000 |
| Company Branded Within Browser |  | | |  |
| 1 year | $54.95 | $109.95 | $196.90 | $273.90 |
| Order Now | Order Now | Order Now | Order Now |
*All prices quoted are in $AUD incl. GST
Wildcard SSL Certificate Plans
| Sectigo PositiveSSL Wildcard DV | Our Most PopularSectigo Wildcard DV SSL | Sectigo Wildcard OV SSL | |
|---|---|---|---|
| | | |
| Issuance speed(After all documentation is received) | < 3 mins | < 5 mins | 1 day |
| Level | Domain | Domain | Organisation |
| Warranty | $50,000 | $500,000 | $1,000,000 |
| Company Branded Within Browser | | | |
| Covers unlimited subdomains | | | |
| 1 year | $199.00 | $299.00 | $399.00 |
| Order Now | Order Now | Order Now |
*All prices quoted are in $AUD excl. GST
What’s an SSL certificate?
Secure Sockets Layer (SSL) is a protocol for website security. It protects online communication and transactions using the strongest encryption available. An SSL certificate validates the identity of your website, rather like a passport. Once activated it displays a padlock icon and https:// in your URL. These trust indicators let your customers know that your site is genuine, protected, and private.
Why use SSL?
As an online retailer, it’s your duty to protect the information that your customers share with you. An SSL certificate on your website scrambles or encrypts the traffic between a web server and a web browser. This means your customers’ personal information is secure. Without SSL, any computer can intercept and steal credit card numbers, usernames, and passwords.
Google has stated that HTTPS will be a ranking signal. Excellent news – it means your website’s page ranking will be boosted if you have an SSL certificate.
Which websites need SSL?
All of them, but some sites are more vulnerable than others such as financial institutions, big-name brands, and government entities. You must use SSL protection if your website is PCI compliant and accepts payment cards, or does any of the following:
- Banking sites asking for financial information.
- If your website accepts payment cards (American Express, Diners Club International, MasterCard, Visa.
- Including credit, debit, prepaid, and gift cards), you have to comply with the credit card associations’ rules about data security. The goal being to protect cardholder data. This has been standardised under the Payment Card Industry Data Security Standard (PCI DSS). If you don’t use an SSL certificate on your website, you won’t be complying with the PCI standards.
- Your website asks customers to provide personal or sensitive information such as email addresses, social security numbers, medical records, and passport numbers.
- You have login forms on your website asking users to enter their username and password.
- Your site provides webmail where users can login and read email in a secure environment.
- There are subscription pages for newsletters, mailing lists, etc.
What's a wildcard SSL certificate?
The wildcard applies to the PositiveSSL DV, Domain, and Organisation SSL certificates. The certificates are issued for the domain name specified in the initial application. If you buy a wildcard with one of these three certificates, it means that the common name specified is *.yourdomainname.com. You can then use the certificate on an unlimited number of subdomains and servers. You also have the option to add in the future.
If you need to secure multiple subdomains on a single domain name, you can buy a wildcard. For a wildcard SSL certificate, a common name of *.yourdomainname.com would secure www.yourdomainname.com, mail.yourdomainname.com, secure.yourdomainname.com, etc…
What’s a Certificate Signing Request (CSR)?
To complete the application for your SSL certificate you need to generate a CSR and submit it to our Certificate Authority (CA). The CSR contains text that’s been encrypted and includes details of your application: company name, domain name, location, email address. Plus, your public and private keys will be generated. Your public/private keys are for encrypting/decrypting all online communication and transactions between you and your customers. To ensure your website traffic stays secure, you must keep your private key a secret. Once our CA receives and confirms your details, it will issue your SSL certificate.
How do I generate a Certificate Signing Request (CSR)?
Our Certificate Authority provides an SSL certificate Request Helper which will create your CSR. This tool allows you to generate the CSR for OpenSSL, Microsoft Exchange 2007, Microsoft Exchange 2010, Java Keytool, F5 Big-IP, and Microsoft IIS
Please note that if you’re generating a CSR for a wildcard SSL certificate, your common name must start with an asterisk (*), i.e., *.fluccs.com.au. The asterisk represents any subdomain name.
What’s the SHA-2 cryptographic hashing algorithm?
Every SSL certificate has a digital signature based on a one-way cryptographic hashing algorithm. In non-geeky terms it’s a secret code that works as a security mechanism to check the integrity of data. For a decade, the SHA-1 was the algorithm of choice. But, it hasn’t kept up with technology and is now vulnerable to attack. Websites that have SSL certificates with SHA-1 will trigger an alert message that warns that the site is unsafe. Those pesky hackers broke the code! All our SSL certificates have the SHA-2 algorithm.
Why do Extended Validation certificates take longer to issue?
It’s because the audit and validation process for the EV SSL certificate isn’t automated and the background checks are meticulous. It’s the price you pay for super-protection, but it’s worth it.