GoDaddy SSL vs Others ...

Portal Home > Knowledgebase > Articles Database > GoDaddy SSL vs Others ...

Posted by ahmadka, 10-16-2013, 12:03 PM
Hi guys ... I have a site on which I want to install my GoDaddy SSL certificate, so I need some advice on that .. Firstly, why is it that GoDaddy SSL usage is so rare on the Internet ... I don't think I've ever come across a site which uses GoDaddy SSL ... Normally sites use the more expensive SSLs from Norton, VeriSign, Thawte, etc. ? Why is that ? GoDaddy claims that their SSL certificates are the same and just as secure as those more expensive ones, so why don't more people use GoDaddy SSL certificates ? Secondly, how does one install an SSL certificate on an e-commerce site, for use on account/checkout pages ?
Posted by Andrew-x, 10-16-2013, 04:48 PM
Well, digitalocean, escrow.com, etc all use GoDaddy SSL.
Posted by tweakservers, 10-17-2013, 09:43 PM
from some of the survey done among the comparison of Godaddy and Verisign(Symantec) SSL, Godaddy SSL appear to be picking up the lead http://w3techs.com/technologies/comp...dy,sc-verisign
Posted by RRWH, 10-17-2013, 09:54 PM
Most people buy (certainly domain-validated) SSL certs based on price... and with a lot of places offering sub $10 SSL certs, it is a no brainer. For details on how to configure/use the Cert, the best place to go is your host and ask for help, the next best place to go is to google and search for "godaddy ssl" it has a heap of info including how to install.
Posted by real_mc, 10-18-2013, 04:33 AM
ahmadka, as previously mentioned, usually the decission factor is the price. Second is the recognition of that CA by the different operating systems and/or browsers. For example, I use StartSSL free certificate which is recognized by pc opera/safari/chrome/ffox, mac safari, ios on ipad and iphone, but not on blackberry (last I checked - 2 years ago). A third factor would be the validity, i.e.: a cheap one valid for 3 years is more convenient. A CA being recognized by a browser means that the signature fingerprint of that root CA is in the list of incorporated ones that comes with the browser. If it is, then everything that is directly signed by it, is also automatically recognized by the browser (meaning you don't get a warning telling you the certificate is invalid). How you install this certificate, is up to your host (if they offer management) or your admin, or you. The public certificate needs to be specified along with the private key in the web server's configuration (Google will tell you what config it is for apache/nginx or lighttpd). In case the public certificate is not signed directly by a root CA, but by another CA that was signed by the root CA, you also need to present the intermediate certificate to the browser. Usually the authority (GoDaddy probably for you) that signs the certificate also provides instructions on how to implement it on different web server software. From here, you also have to take huge caution at what SSL/TLS protocol version are you using and also what cipher suites you enable on the webserver, especially if you'll be dealing with credit card information. If your SSL site handles ccard info and other sensitive information and the server is not securized, you could be the target of lawsuits. Obviously, security on your server's OS and network is as important as the above. Just be careful to be aware of all the aspects. Regards, Andrei
Posted by jomausiu, 10-18-2013, 04:40 AM
You could also check gogetssl.com for chep SSL certificates. https://www.gogetssl.com/
Posted by brianoz, 10-18-2013, 11:03 PM
The reason people use more expensive certs is that they don't understand how certs work, and that's about the simplicity of it. You'd probably have used many sites with Godaddy or Starfield certs; in my experience, they really are indistinguishable for all practical purposes. In theory, the more expensive certs are implemented in more browsers; in practice, it makes no difference. The more expensive certs also offer a meaningless high amount of useless insurance "in case the encryption is cracked". Good luck to anyone ever wanting to claim that, it's just a marketing gimmick.
Posted by hasel, 10-20-2013, 11:02 PM
Godaddy's main selling point is not SSL alone, whereas the ones that you just listed, their core business is just selling SSL cert alone. Regardless, it makes no difference for the encryption level if you are comparing it with costs and encryptions. But for some SSL, they do have insurance coverage. I personally don't think one will receive the insurance anyway. It could be just a form of marketing for them. If you are just a startup, just go with the cheapest ones. It will serve t he purpose. Not many end consumer know of these things. It will not, for example increase the value of your business. Thus, as long as it serve the purpose, that will be suffice.