FAQ: SSL certificates

Find answers to questions about SSL certificates.

What are the advantages of having one's own SSL certificate?

SSL certificates serve to increase the security of your website, whether it's used for internal communication as an intranet or for external communication on the World Wide Web. Data are encrypted to such an extent that they can be transmitted between web server and client without the fear of being misused by an outside third party. Moreover, you as the owner of the domain are demonstrating, by encrypting sensitive data such as bank details, passwords, credit card details and other confidential information, that all data transmitted via your site are secure. This makes visitors to your site trust you. Since numerous well-publicised cyber espionage cases around the world over the past few years have raised most internet users’ awareness as regards data protection, security aspects are naturally gaining in importance. For this reason any website and e-commerce operator, regardless of their size, are urgently recommended to adjust to the changed user behaviour and to use their own SSL certificate.

In addition there is the argument to increase the placement of your own website in the search engines. The search engine giant Google has officially named the HTTPS certificate as an important ranking feature.

What do I need to know when applying for an SSL certificate?

SSL certificates can only be ordered for a domain or a sub-domain. This means, the certificate either applies to the encrypted call-up of the domain (e.g. https://your-domain.tld) or of the respective sub-domain (e.g. https://abc.your-domain.tld).

Wildcard Certificates

A certificate of this kind is ordered for one domain and can be used in conjunction with any number of sub-domains of that domain. If you order a certificate for *.your-domain.tld , you have the added bonus of being able to also use it with the domain name itself. For example, the certificate is valid for calling up "https://www.your-domain.tld", "https://xyz.your-domain.tld" and "https://your-domain.tld".

If the certificate I issued for a third level domain such as *.subdomain.your-domain.tld, this bonus does however not apply! In this case the certificate cannot be used for the encrypted call-up of the domain itself (e.g. "https://subdomain.your-domain.tld"). If you want to call-up the domain here too via an encrypted SSL certificate, you can simply apply for an additional certificate for the domain.

For all types of certificates

When applying for an SSL certificate for your web space/server at Keyweb and any other provider you require your own, fixed IP address. This is a vital prerequisite for the issuance of the certificate. Please note that this IP address is only used for the issuance of your SSL certificate. You cannot use this IP address to call-up your domain, nor for any other purposes.

Are the SSL certificates offered compatible with all browsers?

The SSL certificates from GlobalSign offered by us are compatible with the browsers and mobile devices of approximately 99 % of internet users. In particular, compatibility is guaranteed with Microsoft Internet Explorer 5.01 and younger versions, Mozilla (Firefox) 1+, Netscape/AOL from Version 4.51, Opera 7+ and Apple Safari 1+ and Google Chrome.

In other browsers or older browser versions visitors may see a message box appear on screen when calling up a website that has an SSL certificate. Despite this message the SSL certificates are nonetheless fully functional and ensure an encrypted transfer!

Which digital certificate provider furnishes Keyweb’s SSL certificates?

We only trust in the SSL certificates from GlobalSign. These certificate provider are amongst the global leaders in this field. You can find further information on digital certificates on our cooperation partner respective websites:

https://www.globalsign.com/

How long does it take to obtain a certificate?

The issuance time for SSL certificates varies depending on the type of certificate and the level of authentification required; it can take as little as few minutes or up a week. Certificates that merely validate a domain, such as the AlphaSSL and the DomainSSL Certificate tend to be issued within just a few minutes. For the OrganizationSSL and OrganizationSSL Wildcard the domain owner is also being validated. Issuance of these certificates does therefore take around one to two working days. While the issuance of certificates with extended validation for domain and certificate holder may take up to a week until 10 working days. This applies for instance to the certificates called ExtendedSSL with EV.

Please note that the issuance times for certificates involving owner checks also depend on how quickly the respective certificate provider obtains the necessary documents from you.