Support article
SSL Certificate
An SSL certificate (Secure Sockets Layer), now more commonly referred to as a TLS certificate (Transport Layer Security), is a type of digital file that...
An SSL certificate (Secure Sockets Layer), now more commonly referred to as a TLS certificate (Transport Layer Security), is a type of digital file that provides security for online communications. SSL/TLS certificates encrypt the connection between the user’s browser and the website’s server, ensuring that all transmitted information is secure and private.
Key functions of an SSL certificate:
- Encryption: Protects the data transmitted between users and websites, ensuring that it cannot be read or modified by unauthorized third parties.
- Authentication: Verifies the identity of the server the user is connecting to, preventing man-in-the-middle attacks.
- Data integrity: Ensures that data is not altered during transmission, maintaining the integrity of the information sent and received.
Types of SSL certificates:
- Single-domain certificates: Protect a single domain name or subdomain. They are the simplest and most common.
- Wildcard certificates: Cover a main domain and an unlimited number of its subdomains.
- Multi-domain certificates (SAN or UCC): Allow you to secure multiple domain names or subdomains (for example, www.ejemplo.com, www.ejemplo.net) with a single certificate.
SSL certificate validation levels:
- Domain Validation (DV): This is the most basic level, where only domain ownership is verified. It is fast and generally automatic.
- Organization Validation (OV): Requires more detailed verification, including the authenticity of the organization requesting the certificate. It offers a higher level of security and is visible in the certificate details.
- Extended Validation (EV): This is the highest level of validation and requires an exhaustive verification process. EV certificates activate the green address bar in browsers, explicitly displaying the organization’s name to visitors, which increases user trust.
SSL implementation and use:
- Purchase and selection: An SSL certificate can be acquired through a trusted Certificate Authority (CA). There are free options such as Let’s Encrypt, which offers DV certificates at no cost.
- Installation: Once acquired, the certificate must be installed on the web server. This process varies depending on the server and the hosting management system used (such as cPanel, Plesk, etc.).
- HTTPS configuration: After installing the certificate, it is important to configure the website to use HTTPS by default, which may include redirecting all HTTP connections to HTTPS.
The use of SSL certificates is now considered standard practice for all websites, especially those that handle sensitive information such as credit card details, personal information, or login credentials. It not only improves website security but also contributes to the trust and credibility of a company’s or individual’s online presence.