Domain Validation (DV)
Organization Validation (OV)
Extended Validation (EV)
When a visitor accesses your website, SSL establishes a secure encrypted connection.
SSL (Secure Sockets Layer) is a cybersecurity protocol that digitally encrypts information sent from a browser to a server. SSL certificates protect information you enter on a site, such as credit card details, usernames, passwords, and more. You can tell a website has an SSL certificate if the address starts with “https” and displays a padlock icon in the browser. Many websites also display a site seal from a reputable Certificate Authority (CA). SSL helps keep online shopping, banking, account logins, and overall internet browsing secure.
A Domain Validated (DV) SSL certificate is a quick and easy way to secure a domain, as the Certificate Authority (CA) issuing the certificate only requires proof of domain ownership. However, these certificates offer little in the way of SSL recognition, so they are recommended for websites where visitor trust is not of high importance, and information such as usernames, passwords, or credit card information is not required. These certificates can be issued in a matter of minutes.
An Organization Validated (OV) SSL certificate requires a business to complete a light vetting process with the Certificate Authority before issuance. OV certificates are a good middle-ground between DV and EV certificates. They are more affordable than EV certificates while offering more trust indicators than DV certificates. Issuance typically takes 2 - 3 business days.
An Extended Validated (EV) SSL Certificate is the most premium type of SSL certificate. The organization is required to complete an extended validation process, which is why EV are used by many of the most trusted sites in the world, such as Bank of America, PayPal, Meta, and more. Due to the extensive vetting process, EV certificates typically take 3 – 5 business days to be issued.
The main criteria to qualify for an EV certificate would be that your business is an official company registered with a recognized government authority. Sole proprietors and partnerships registered in the U.K. are not eligible for EV SSL certificates.
Wildcard SSL certificates can cover one main domain name (*.domain.com) and an unlimited number of the first-level subdomains under it (examples: www.domain.com, mail.domain.com, login.domain.com, test.domain.com, etc.). The “*” (asterisk/star) character acts as a placeholder for any subdomain under the main domain.
Multi-domain or SAN (Subject Alternative Name) SSL certificates secure multiple domain names with a single certificate, making them a cost-effective alternative to purchasing separate SSLs for each domain. They simplify management by allowing one certificate to cover multiple sites or servers, with just one validation and expiration date to track
Note:Wildcard domains cannot be added to a Multi-domain Certificate, only to Multi-domain Wildcard certificates.
Wildcard SSL certificates cover one main domain (www.domain.com) and an unlimited number of subdomains (mail.domain.com, login.domain.com, test.domain.com, etc.) without needing to specify the subdomains as the SAN domain. You are required to include an asterisk/star on the domain as the common name (*.domain.com).
Multi-domain (SAN) SSL certificates secure multiple domains under just one certificate. Unlike the Wildcard certificate, each domain or subdomain must be manually added to the SAN list. Most major brands, such as DigiCert and Sectigo, can cover up to 250 domains in one certificate, but the free number of domains that come with a purchased certificate will vary.