What is https certificate?
https is an encrypted transmission protocol, the sites use https to avoid sensitive information access by third parties. https encryption protocol = SSL / TLS + http protocol, i.e., with a conventional SSL certificate on http protocol data transmission can be encrypted.
![A5KN_MC[E]MUFR~Q1JY]K[G.png](https://s1.51cto.com/images/20190529/1559113729419419.png?x-oss-process=image/watermark,size_16,text_QDUxQ1RP5Y2a5a6i,color_FFFFFF,t_100,g_se,x_10,y_10,shadow_90,type_ZmFuZ3poZW5naGVpdGk= "1559113729419419.png")
SSL certificate is actually CA public key authentication mechanism for users, including signature and expiration date information, user information public, public keys, authority electronic visa authorities. CA (Certification Authority, Certificate Authority) organization, is to undertake a third-party inspection of the legitimacy of public authority, responsible for specifying policies, steps to verify the user's identity, and the SSL certificate is signed to ensure the identity of the certificate holder and ownership of the public key. CA user organization using the public key for each issuing an SSL certificate, the role of SSL certificate is a personal / corporate listed in the certificate to prove the legal owner of the public key listed in the certificate. CA digital signature allows institutions *** can not forge and tampering with a certificate.
After installing SSL Web site certificate to show the form of a browser (the following picture to EV SSL Certificates as an example):
![F3PEWSDSLQS~Q]}2L%DJL)2.png](https://s1.51cto.com/images/20190529/1559113739461745.png?x-oss-process=image/watermark,size_16,text_QDUxQ1RP5Y2a5a6i,color_FFFFFF,t_100,g_se,x_10,y_10,shadow_90,type_ZmFuZ3poZW5naGVpdGk= "1559113739461745.png")
Why websites need to apply SSSL certificate?
(1) SSL certificate may be encrypted so as not to be leaked sensitive information
The main reason to use SSL certificate to protect sensitive information sent over the Internet can be encrypted to prevent important data from being leaked. This is important, because you transfer information between your computer and a server on the Internet, if the SSL certificate encryption is not used, you pass any information you are likely to be accessible to third parties, including your credit card number, user name and password, and other sensitive information. With SSL certificate, you can guarantee everyone can not read the information, which can protect data against information *** or bad faith of the people of the infringement.
(2) SSL certificates can provide authentication to prevent phishing sites
In addition to encryption, SSL certificates can provide authentication. This means that you can ensure that the information is sent to the correct server, do not worry about someone stealing your information. Effectively prevent third parties masquerading as your website and deceive your users, access to personal information, resulting in large or small loss. The SSL certificate is issued by a CA trusted authority, and will strictly verify the information business / organization applying for the certificate.
所以说,选择受信任的CA机构颁发的SSL证书非常的重要,CA机构会通过各种信息的验证才会颁发SSL证书,而且EV SSL证书需要比其他证书更多的验证资料。
(3)SSL证书可增加信任度,消除浏览器“不安全”提示
早先年谷歌浏览器打击http站点,将未安装SSL证书的http站点,提示“不安全”标识,如下图所示,非常影响用户体验,流失大量网站流量。
安装SSL证书的网站在Web浏览器的地址栏可显示,绿色小锁图标,绿色地址栏,EV SSL证书还能显示企业/组织名称。以确保访问者知道其连接是受到保护的,可放心使用。这意味着当访问者看到这些提示信息会更信任您的网站。而且可以查看CA机构的颁发信息,以便为您的客户提供的更多信任。
(4)有利于seo关键词排名
谷歌、百度等浏览器,明确表示对安装SSL证书的网站进行优先暂时排名的权利,因此除非网站安装了SSL证书,否则网站将很难在搜索引擎靠前的位置找到,从而影响网站的流量和收入。
如何选择SSL证书?
首先考虑自己拥有的域名数量,单个域名就选择单域名SSL证书,多个主域就现在多域名证书,多个同一个域名的子域就现在通配符证书。
其次考虑验证方式,如果是个人类网站博客的话,只能选择DV SSL证书,因为OV/EV需要验证组织信息,个人无法提供这些信息。企业用户的话,安信证书建议选择OV、EV SSL证书,更加的可信赖,而且EV SSL证书可在浏览器地址栏显示企业名称,有利于企业品牌的宣传,给用户信赖感。
1、个人网站:如果经营的是小型的个人网站,是个人站长或者自媒体,需要HTTPS但是对于网站信誉度没有过高的要求,那么就可以选择域名验证证书(DV)。DV证书签发速度快,价格便宜,通常十分钟内就可完成签发,无需复杂的网站身份验证过程,支持HTTPS和安全挂锁标志,性价比极高。
2, corporate website: If you run a common corporate websites, involving registration, login, etc. Member Center page, it is recommended to use the Enterprise SSL certificate type (OV) or Enhanced SSL certificates (EV). Both certificates are required on the identity of the website owner is authenticated, be able to prove the true identity of the website, put an end to phishing sites, and have better protection of personal information of visitors. EV certificates will make the website address bar turns green, which will help promote the brand, more likely to win the trust of customers.
3, the electricity supplier sites: the electricity supplier for the class Web site, the user's security information website and brand image are key factors for purchasing SSL certificates. Electricity supplier websites involved in the payment transaction, customer privacy and account information such as passwords, encryption requires a higher level. And electricity supplier larger class website traffic, brand image is more important, it is recommended to use Professional Edition Enterprise SSL certificate type (OV) or Professional Edition Enhanced SSL certificates (EV).
4, financial website: financial securities, banking, third-party payment sites typically require the highest level of security, not only related to the user's private information, credit card information, payment security, but for the true identity of the site has a high demand for standards . Enhanced Extended Validation certificates (EV) using the most appropriate financial website, EV SSL certificate means the certificate issued in compliance with global standards, strict site authentication, is the highest level of security of SSL certificates. And after the installation of EV certificates, the browser address bar green visual display unit and a Chinese name, safe and reliable at a glance.