FAQs Archive - Page 2 of 4

Can I order an SSL/TLS certificate for an IP address?

You can protect an IP address with an SSL/TLS certificate, but only under certain circumstances.

Which Code Signing Certificate do I Need? EV or OV?

You probably already know that a code signing certificate from SSL.com will assure users that your software is from a known and trusted developer, free from unauthorized modifications and malware, and safe to install, but which code signing certificate should you buy?

What Is an X.509 Certificate?

X.509 is a standard format for public key certificates. Each X.509 certificate includes a public key, identifying information, and a digital signature.

What is DNS over HTTPS (DoH)?

DNS over HTTPS (DoH) uses the HTTPS protocol for sending and retrieving encrypted DNS queries and responses.

What is HTTP Strict Transport Security (HSTS)?

HTTP Strict Transport Security (HSTS) is a web security policy mechanism designed to protect HTTPS websites against downgrade attacks and cookie hijacking.

I got a Monthly Invoice from SSL.com. Do I need to pay it every month?

Monthly invoices from SSL.com represent one-time charges, reflecting any unpaid balance remaining at the end of a month. They are not recurring bills.

How much will I be billed for adding new domains to an existing order?

If you add any new domains to a multi-domain certificate order, your bill for the new domains will be prorated by the amount of time remaining on the order.

What is Elliptic curve cryptography (ECC)?

Elliptic curve cryptography (ECC) uses the mathematical properties of elliptic curves to produce public key cryptographic systems.

What is a root store?

A root store is a list of trusted root CA certificates. A certificate authority (CA) uses root certificates as trust anchors for the certificates it issues.

Do I need to repeat domain validation (DV) for subdomains?

The answer depends on the DV method that you originally used. Email validation is scoped differently than the CNAME and File Lookup methods.

What Is Code Signing?

Code signing is the process of using X.509 certificates to digitally sign software for safe distribution, hassle-free installation, and compliance with OS security policies.

What is a Certificate Authority (CA)?

A certificate authority (CA) is a an organization that acts to validate identities and bind them to cryptographic key pairs with digital certificates.

How Can I Get My Certificates in PEM Format?

Information on the PEM format and instructions on how to retrieve PEM-formatted certificates from SSL.com.

Glossary of PKI Terms

Glossary of public key infrastructure (PKI) terms.

How Do I Install a Certificate?

This page includes lists of all SSL.com how-to articles covering certificate installation on various platforms.

How Do I Generate an SSL/TLS Certificate Signing Request (CSR) on My Server?

This page includes a list of all SSL.com how-to articles covering Certificate Signing Request (CSR) generation on various platforms.

How Can I Add Subdomains To My Certificate?

Looking to protect your subdomains? You could be able to add them to your certificate, but let’s take a closer look here.

FAQ: 27-Month SSL Certificate Lifetime Limit

This FAQ describes how SSL.com’s multi-year SSL/TLS certificate bundles work with the CA/B Forum’s certificate lifetime limit of 825 days (about 27 months).

How do I confirm that a private key matches a CSR and certificate?

How to use OpenSSL to confirm that a private kay, CSR, and certificate are compatible.

What Are The Requirements for SSL.com EV Certificates?

Requirements for SSL.com EV certificates.

FAQ: What is the “serial number entropy” issue I’m hearing about?

SSL.com will be issuing replacement SSL/TLS certificates for those affected by EJBCA’s serial number entropy issue.

Questions about Certificate Transparency

Answering a few questions we’ve heard about Certificate Transparency.

Satisfaction Guarantee Refund Policy

SSL.com’s 30 day satisfaction guarantee.

Does the Basic SSL Certificate work with subdomains?

SSL.com’s Basic SSL Certificate covers subdomains!

Did SSL.com send an email asking for my banking information?

Some recently reported seeing emails from a suspicious address that appear to be from SSL.com. Please delete these emails, as they are not from us!

Name	Provider	Purpose	Expiration
Google Analytics	Google	Collect anonymous information such as the number of visitors to the site, and the most popular pages.	365 days
StatCounter Analytics	StatCounter	Collect anonymous information such as the number of visitors to the site, and the most popular pages.	365 days

Archives: FAQs

Can I order an SSL/TLS certificate for an IP address?

Which Code Signing Certificate do I Need? EV or OV?

What Is an X.509 Certificate?

What is DNS over HTTPS (DoH)?

What is HTTP Strict Transport Security (HSTS)?

I got a Monthly Invoice from SSL.com. Do I need to pay it every month?

How much will I be billed for adding new domains to an existing order?

What is Elliptic curve cryptography (ECC)?

What is a root store?

Do I need to repeat domain validation (DV) for subdomains?

What Is Code Signing?

What is a Certificate Authority (CA)?

How Can I Get My Certificates in PEM Format?

Glossary of PKI Terms

How Do I Install a Certificate?

How Do I Generate an SSL/TLS Certificate Signing Request (CSR) on My Server?

How Can I Add Subdomains To My Certificate?

FAQ: 27-Month SSL Certificate Lifetime Limit

How do I confirm that a private key matches a CSR and certificate?

What Are The Requirements for SSL.com EV Certificates?

FAQ: What is the “serial number entropy” issue I’m hearing about?

Questions about Certificate Transparency

Satisfaction Guarantee Refund Policy

Does the Basic SSL Certificate work with subdomains?

Did SSL.com send an email asking for my banking information?

We’d love your feedback