My SSL certificate is about to expire. I am using PositiveSSL now, but two years ago it was just $9 per year, and now it is $49 per year. Quite a difference. Could somebody please recommend a cheaper SSL certificate with the same quality?

You might want to checkout RapidSSL - it is available at around $10-$15 with various providers.

Could you give some examples? Which providers can I buy RapidSSL from?

namecheap for example:
http://www.namecheap.com/learn/other-services/cheap-ssl-certificate-rapidssl.asp

Hi!
I use globessl:

http://www.globessl.com

They'll even give you a free 30 day trial cert you can upgrade later.

RapidSSL is what I generally recommend for those wanting an ssl on the cheap.

Yes, you can check NameCheap, Servertastic and Enom for cheap RapidSSL certs.

Isn't positive SSL still $10 on namecheap? It was the last time I checked. Their RapidSSLs are also cheap as others have mentioned already

cheapest ssl? check startssl. they offer trusted certs for free! no not like cacert, their certs are trusted by all major browsers.

I know that namecheap gives you a free sll cert if you get your damin through them. So if you need to renew it......

I know that namecheap gives you a free sll cert if you get your damin through them. So if you need to renew it......

Don't think it's for renewals, just for transfers and new registrations. I could be wrong though. But I did renew a domain there recently, didn't get a free cert, but I also transferred a .net over there back in August and got one.

Use namecheap.com they are great. It'sd like $10 for a rapid ssl cert.

Don't think it's for renewals, just for transfers and new registrations. I could be wrong though. But I did renew a domain there recently, didn't get a free cert, but I also transferred a .net over there back in August and got one.

I got one for renews, transfers and new regs - you might have forgotten to click the "get a cert" link

I got one for renews, transfers and new regs - you might have forgotten to click the "get a cert" link

That's a possibility. Now I wish I had photographic memory.

Can you get a cheap SSL certificate from namecheap without buying any of their other products? All my domains are at godaddy.

Godaddy and Rapidssl both provide cheap ssl certificates. But the price of SSL certificate sometimes matter with the encryption capability as well. Higher ssl price means higher encryption and security.

From what I can see the cheapest price for SSL that Godaddy offers is $30.

startssl.org

It`s free.

You should go for a Rapidssl or Thawte SSL123.

Thank for nice tips all above. I am now using Positive SSL on my sites.
I would like to consider turning to Rapid SSL.
Who could share with us what is the difference between these two?

Thanks,

Hi,

Go thru below threads and discussions, they will help you make the discussion:

http://www.webhostingtalk.com/showthread.php?t=865051

http://forums.oscommerce.com/topic/243127-whats-your-opinion-on-rapidssl/

namecheap for example:
http://www.namecheap.com/learn/other-services/cheap-ssl-certificate-rapidssl.aspCheapSSLs (http://www.cheapssls.com) seems to be NC's sister company. RapidSSL and PositiveSSL is a bit cheaper there.

Thank for nice tips all above. I am now using Positive SSL on my sites.
I would like to consider turning to Rapid SSL.
Who could share with us what is the difference between these two?

Thanks,The only difference is the brand and RapidSSL comes with $10K warranty, which is rarely issued.

I agree with byronhost1, GlobeSSL is pretty good, and cheap too. Some of their support guys are numskulls, but all in all, not bad.

Godaddy and Rapidssl both provide cheap ssl certificates. But the price of SSL certificate sometimes matter with the encryption capability as well. Higher ssl price means higher encryption and security.

No it doesn't.

Higher price means more validation.

A $10 SSL cert has exactly the same encryption ability as a $1,000 SSL cert.

A $10 SSL cert has exactly the same encryption ability as a $1,000 SSL cert.Wrong. SGC certificates offers higher encryption of minimum 128-bits compared to the usual minimum of 40-bits on old systems.

The last cert I bought was 15 bucks at 256bit minimum. My bigger sites have more expensive certs because I needed the validation to be trusted more by my customers/potential customers. The more expensive certs are also at 256-bit encryption.

For most people the only difference between certs is one makes FF address bar go green, and one makes it go blue.

The last cert I bought was 15 bucks at 256bit minimum.Maximum you mean... I had never heard of a 256-bits minimum cert, furthermore a ridiculous $15.

It`s ridiculous to pay for cert if you can have it for free.
A server need less then 5 seconds to generate any cert.

A browser using temporary session keys (128-256 bits) to encrypt data (not an certificate).

Right, if you will have a "8192 bits cert" browser will use 128-256 bits key to encrypt data anyway...

http://en.wikipedia.org/wiki/Transport_Layer_Security

startssl.org

It`s free.

It`s ridiculous to pay for cert if you can have it for free.
A server need less then 5 seconds to generate any cert.

A browser using temporary session keys (128-256 bits) to encrypt data (not an certificate).

Right, if you will have a "8192 bits cert" browser will use 128-256 bits key to encrypt data anyway...

http://en.wikipedia.org/wiki/Transport_Layer_Security

startssl.org

It`s free.Don't you know self-signed SSL certificates are only suitable for personal use? Don't you know it will prompt a warning when accessing a secured self-signed page? Don't forget, if you are doing business, getting that is as good as driving majority of your customers away!

Don't you know self-signed SSL certificates are only suitable for personal use?

Any root CA must be self-signed.

It will not prompt a warning if CA is "build in" into a browser.
You can check https://www.startssl.org or any URL that you can find in
Edit/Preferences/Advanced/View Certificates/Authorities/
$Cert/View/Details/Issuer (Firefox)

You can have certificate that signed by any company from this list (if you would like to have no prompt a warning for new visitors).
But again it takes less than 5 seconds for "ssl maker", so it can`t be expensive (and can be for free).


If you really serious about security you should read the standards (RCF http://www.ietf.org/rfc/rfc2459.txt ), not "recommendations" ;)

Any root CA must be self-signed.There's a difference between self-signed and CA-signed.

It will not prompt a warning if CA is "build in" into a browser.That's the point.
You can check https://www.startssl.org (https://www.startssl.org) or any URL that you can find in
Edit/Preferences/Advanced/View Certificates/Authorities/
$Cert/View/Details/Issuer (Firefox)

You can have certificate that signed by any company from this list (if you would like to have no prompt a warning for new visitors).
But again it takes less than 5 seconds for "ssl maker", so it can`t be expensive (and can be for free).


If you really serious about security you should read a standards (RCF http://www.ietf.org/rfc/rfc2459.txt (http://www.ietf.org/rfc/rfc2459.txt) ), not "recommendations" ;)Obviously... Domain validate is quick, but organisation verification doesn't take seconds.

Obviously... Domain validate is quick, but organization verification doesn't take seconds.


Here you right.

I would go to a reseller of Alpha SSL certificates and find a good deal on one. While your not really being verified (as with the Rapid SSL's) it is still drawn off a 12 year old root thats been 2048 bit since 1999, thats embedded in all the mainstream and most regional mobile devices, so its going to work for just about any cleint on your site using almost anything. The are all using SHA-1 Agorthyms and utilize 256 bit encryption.

Plus if you order it for www.domain.com, it covers the https://domain.com as well for free. Interactive site seal too, not just a picture. I know you can get them on the inexpensive side at places like www.sslreseller.com and www.ssllayer.com.

I know them intimitly well, and they are the best 'cheap' cert out there, hands down.

Thanks for the info, GlobalShawn and LaptopFreak, well said. This site is the reason I don't like reading wiki articles for my technical information. There's nothing worse than my site giving out warnings to every tom, dick and harry that wants to browse each page. I'll check out the sites you mentioned.

Wrong. SGC certificates offers higher encryption of minimum 128-bits compared to the usual minimum of 40-bits on old systems.

The fact that 99% of websites no longer function on browsers which default to 40 bit encryption makes your point null and void. It is pretty safe to assume that your customers will be using IE 5+, Netscape 4.7+ or an equivalent.

The fact that 99% of websites no longer function on browsers which default to 40 bit encryption makes your point null and void. It is pretty safe to assume that your customers will be using IE 5+, Netscape 4.7+ or an equivalent.99% of websites? Even though your theory is backed by nothing, assuming you're right, the 1% is still a vast amount of websites. How can my point be invalid?

We got it for free for 1 year when we purchased our domain. Hope they have the same offer and the last time i checked was 10$ subsequent year. Rapid SSL is also a fair option.

Binoy