All SSL and Digital Certificates Are the Same, Right? Wrong

If all digital certificates are the same, why choose anything but the basic certificate? Because all certificates are not the same. Currently, there are three classes of digital certificates as recognized by the CA/Browser Forum: Domain Validated (DV), Organization Validated (OV) and Extended Validated (EV). There is a common misconception that the only difference in these certificates types is cost. In reality, there is much more.
Entrust provides OV and EV certificates and, to this day, has never sold Domain Validated (DV) certificates. Why has Entrust decided against selling DV certificates? Entrust feels strongly that these certificates do not provide a level of security and website authentication necessary to ensure trust.

DV certificates have repeatedly been proven inadequate in providing the level of security needed by the world’s leading government agencies, financial institutions and e-commerce websites. The requirements to obtain a DV certificate are not as rigorous as OV or EV certificates and, as a result, cannot provide the level of identity assurance needed in today’s cybersecurity landscape. The domain is the only identifying feature of a Domain Validated certificate, all the purchaser of this certificate must provide for the certificate being registered is proof of ownership of the domain. This is usually done in an automated fashion.

A DV certificate does encrypt data transfer but contains no identifying information for the organization you believe you are interacting. To ensure that increased level of assurance, organizations should move to OV or EV certificates. This will provide customers the peace of mind that they are, in fact, communicating securely with you. Whenever possible, organizations should go with an EV certificate; while the technology behind the certificates may be the same, another factor differentiates OV and EV certificates.

In a word, verification. Entrust requires all certificates endure a rigorous verification process, but EV certificates entail extra verification steps to ensure the identity of the requester. So maybe the technology in certificates is the same, but the identity assurance and verification behind that certificate is what really matters.

So, what is behind a certificate you purchase from Entrust? The entire Entrust team. Entrust has a 98.5 percent customer renewal. In fact, when a customer renews, on average, they add an additional 68 percent more services. This isn’t because of marketing. It is a result of our tireless dedication to ensuring our customers get the service they need. Our development teams provide the tools you need to manage your certificate environment whether you use our Discovery tool or Certificate Management Service. And our excellent support are here to help you solve any issues. The entire Entrust team is here for our customers as trusted advisors, providing the best in security, trust, service and support.

Trusted Security. Focused On You.


Add to the Conversation