Contact us at |

SSL Dragon Blog - Knowledgebase

How to Create the well-known Folder for Domain Validation?

Domain Validation (DV) or Domain Control Validation (DCV) is a step every SSL applicant must pass before receiving an SSL certificate from the Certificate Authority. It involves proving ownership or management rights over the domain or subdomain you intend to secure. CAs provide several validation methods to speed up the process: Email method HTTP/HTTPS method [...]

SSL renewal – The Complete Guide to Renewing Your Certificate

Renewing your SSL certificate on time is as important as securing your website for the first time. An expired certificate is one of the most common causes of SSL connection errors. In this article, we'll show you how to renew your SSL cert hassle-free so that your website remains protected around the clock. Before we [...]

How to Pass Domain Control Validation (DCV)?

Domain Control Validation (DCV) is a step every applicant must pass before receiving the SSL certificate from the Certificate Authority. It doesn't require any paperwork, and the process is straightforward. Certificate Authorities use DCV to verify the person making the request is authorized to use the domain related to that request. To confirm you have [...]

Can a Wildcard Certificate Secure Second-Level Subdomains?

SSL certificates can secure websites of any size and complexity. Since HTTPS became a requirement, more users have learned how to install and manage SSL certs on different platforms. However, the less tech-savvy folks face stern challenges when the multi-level subdomains come into the equation. Unlike single websites that use a one-domain certificate, you can [...]

9 Best Practices for Securing E-Commerce Payments

E-commerce retailers deal with an average of 206,000 web attacks per month. That’s 5 attacks per minute. Blocking the onslaught of cyber criminals is a top priority for every online store. According to Merchant Savvy, global payments fraud has tripled, rising from $9.84 billion in 2011 to $32.39 billion in 2020. It is projected to [...]

The Secure Way to Send Documents Via Email

Email remains the most valuable communication channel for businesses of all sizes and the most effective way to engage with your audience. Unfortunately, it is also an easy target for cybercriminals. Business Email Compromise earned hackers $2.4 billion in 2021.  Since email is one of the least secure digital operations, companies don't help themselves by [...]

A Non-Technical Guide to SHA 256 Algorithm

A common specification of all SSL certificates, irrespective of brand, price, and type, is the SHA 256 algorithm. You will see a mention of it in the certificate’s details or the features listed on the product’s information. For non-techies, SHA 256 is usually a complete mystery. In this article, we want to show you what [...]

What is Port 443, And How to Enable It?

When you install an SSL certificate, one of the steps is to select port 443 - the default port for the HTTPS connection. But what exactly does a port do? And why it's numbered like that? This article provides the answers. What is a port? In simple terms, a port in networking is a software-defined [...]

LEI Code – The Fastest Way to get a BV or EV SSL Certificate

SSL certificates are now an essential element of every site. They keep sensitive data safe, verify website ownership, convey trust to users, and prevent phishing attacks. On top of that, all browsers require SSL and flag unencrypted sites as not secure if they don’t have a valid certificate. In this article, we'll show you how [...]

How to Check SSL Certificates Details with Open SSL in Linux?

SSL certificates are now a requirement for any website. If you don't encrypt your site, browsers will flag it as not secure, leaving visitors with an annoying warning message. But even if you add an SSL certificate, managing it is tricky. An SSL error may pop up unexpectedly, causing you all sorts of trouble. To [...]

What is an LEI Code and Who Needs It?

Our world is digitally interconnected, with million of international transactions occurring every day. Today, global trade and financial markets are safer than ever. The strict regulations have increased transparency and reduced illicit activities to a minimum, but it wasn’t always this way. At the dawn of the 21st century, businesses and customers couldn’t always establish [...]

How to remove SSL certificates from Windows 10

SSL certificates authenticate website identity and provide security for online communications. Without these small data files, your site won’t function properly and become vulnerable to man-in-the-middle attacks. Managing your certificates efficiently is a task you shouldn’t take lightly. From following the best installation practices to renewing them on time, you should regularly check your SSL [...]

A Guide to IoT Device Certificates

Advanced technology has brought joy and convenience into our lives, and the Internet powers the world of trade and information. Over 4.6 billion people use the Web to study, work and communicate with each other, but we’re not the only ones. Right next to us, a rapidly growing network of electronic devices collects and transfers [...]

The Guide To Electronic Signatures

Electronic signatures or e-signatures have become second nature to how we attach identity to documents in the present time. Almost everyone has heard about e-signatures, and many are using them in various fields of life and business every day. Jurisdictions like Europe, China, and the U.S. have legislation that regulates the use of electronic signatures [...]

How to Use Code Signing Certificates the Right Way?

Code Signing certificates are a must for code publishers. With so many digital programs available to download, protecting users from malware and viruses is a prerequisite for any successful IT company or independent developer. Code Signing certs prove the identity of software’s creators and ensure that no one can alter the original code without being [...]

Document Signing – a must-have for modern businesses

The days of pagers and fax machines are long gone. Snail mail has also greatly diminished, and even wet signatures are becoming old-fashioned. The digital revolution has transformed the very fabric of how we connect, interact, and conduct business. And, if we’re not keeping pace with the latest trends and advancements, we inevitably fall behind.  [...]

The checklist for installing an SSL certificate

SSL certificates have become an essential security element of every website. Whether you have just a blog or a large business site, HTTPS encryption is now mandatory for everyone. If you don’t add an SSL certificate to your site, browsers will mark it as not secure. Moreover, your website won’t appear on search engine results [...]

Best Practices to Store the Private Key

The SSL/TLS protocol uses a pair of cryptographic keys - one public and one private to secure and authenticate connections. These keys are generated together as a pair and work in tandem during the TLS handshake process. The public key is used to encrypt, and a private key is used to decrypt the data. While [...]

What is a Dedicated IP Address and Why You May Need One?

When you sign up for a hosting account, most providers will host your site on a shared IP address, especially if you’re on shared hosting.  However, they'll offer you a dedicated IP either via an upsell during the initial order or as an option in your hosting panel. In this article, we’ll explain what a [...]

What is a CA Bundle and Where to Find It?

When you install an SSL certificate, your server may ask to import a CA Bundle along with your primary certificate. Here’s where users usually encounter difficulties. They either don’t know where to find the CA bundle or struggle to create it. CA Bundle is the file that contains root and intermediate certificates. Together with your [...]

How to import and export a PFX file in IIS?

Windows servers store the SSL certificate file (public key) and the associated private key file in PFX format. For an SSL certificate to function, you need both public and private keys. If you need to transfer SSL server security certificates from one server to another, you need to create a .pfx backup. This guide explains how [...]

What are HIPAA-compliant SSL Certificates?

SSL certificates have become an integral part of the web. Now, it is more important than ever to secure sensitive communications and protect users’ privacy online. In a world that is rapidly shifting to an even more accentuated digital landscape, adhering to the best security practices is a must for every industry. The medical field, [...]

What is a CAA Record and How Does it Work?

The world of Certificate Authorities is strictly regulated. It takes massive technical and financial effort to fulfill all auditing requirements. Even so, getting trusted by browsers and operating systems is the easiest part. Maintaining trust online is the real challenge. There’s a reason why most innovative companies, including 89% of the Fortune 500 and 97 [...]

How SSL & PKI Secures Your Company in 2020 and Beyond?

It’s been a challenging 2020 so far. The COVID 19 pandemic has sent the entire planet into chaos. With brick and mortar businesses struggling to stay afloat, the online world has taken the center stage now. The lockdown and social distancing have forced companies to shift their operations from offices to a home environment. For [...]

How to Avoid Email Phishing Once and for All?

Phishing is one of the oldest tricks in online scammers’ books. It obtains sensitive information such as login credentials, username passwords, and credit card details from the unsuspecting victims by impersonating a trustworthy entity. Why spend countless hours on breaking highly secure systems, when a well-crafted email can persuade the target to voluntarily handle everything [...]

How to fix the SSL mixed content error?

Website encryption is all but mandatory in today’s Internet. If you don’t encrypt your site, browsers will mark it as not secure. You could have the most original content on the web, but without SSL, your visitors will see an off-putting security warning instead. SSL certificates have become essential to website building, but managing them [...]

SSL Resellers vs Hosting Providers – Where to Buy?

SSL certificates have become a necessity for all types of websites. From small blogs to large e-commerce enterprises, everyone needs SSL to secure visitors’ sensitive data and remain accessible via popular browsers such as Chrome, Firefox, or Safari.  In this article we'll show you where to buy an SSL certificate so you can save money [...]

How to Add an SSL Certificate to Your Site – The Roadmap

SSL certificates have become a hot commodity in today’s Internet. Every website, regardless of type and size, needs one to comply with the latest web security and SEO guidelines. Whether it’s a basic site or a complex platform, when it comes to sensitive data encryption, all are equal before the leading browsers. If you don’t [...]

HTTPS vs VPN – Do you need VPN if you use HTTPS?

VPN and HTTPS are two important technologies for online protection. Many users ask which one is better, but comparing them is like comparing apples to oranges. Both are great tools to use, but for different reasons. Best of all, they complement each other, so you can use both for a better browsing experience on the [...]

How to Install an SSL Certificate on WordPress Multisite?

WordPress Multisite is a native WordPress feature that allows you to create and manage multiple WordPress sites off a single installation and dashboard. Depending on your project needs, you can set up WP Multisite as subdirectories, subdomains, or multiple domains. With so many options available, many users ask how to properly install an SSL certificate [...]

Why So Many SSL Certificates Are Technically the Same?

SSL certificates are easy to understand on the surface, but when new users start to drill in a little, they’re left with more questions than answers. First, they discover that the SSL acronym is just branding, and the correct technical name is TLS certificates. SSL (Secure Sockets Layer) is an old cryptographic protocol no longer [...]

What is the best SSL certificate depending on the website type?

SSL certificates are a core element of website building. Along with getting a domain name and a reliable hosting provider, installing an SSL certificate is a priority for anyone who wants to build a successful website. Today, Chrome and Firefox, one of the most popular browsers, flag unencrypted sites as not secure. To visitors, this means [...]

SSL without a domain name – is it possible?

Every website needs an SSL certificate these days to remain accessible via Chrome or Firefox. But can you get SSL  without a domain name? Yes, you can! Instead of securing a domain, you can encrypt a public IP address.  Just like with regular certificates, you have a couple of validations options (DomainValidation and Business Validation). [...]

Do all SSL Certificates have the same SSL security strength?

SSL certificates have taken the web by storm. Today, sites of all sizes need an SSL certificate to secure sensitive data and stay relevant in search engines. No HTTPS means no protection and visibility. Whether it’s just a blog or a complex e-commerce platform, SSL certificates are a core element of successful website building. When it [...]

When HTTPS Doesn’t Mean Safe – A Thumbs Down to Free SSL

Over 90% of web traffic across Google is now over HTTPS. In other words, for every 10 websites people visit via Chrome using Windows, only one is not secure. This in itself is a remarkable achievement, since just five years ago, only half of the web had been using HTTPS. SSL certificates have become the norm, [...]

What is a Multi-Domain Wildcard Certificate?

SSL certificates are in high demand right now. Since Chrome and other popular browsers began flagging HTTP websites as Not Secure, installing an SSL certificate has become all but mandatory. From small blogs to massive e-commerce sites, everyone is switching to HTTPS to protect sensitive data in transit. With so many different websites to encrypt, [...]

What is OCSP Stapling and How to Use It?

SSL certificates can flawlessly secure sensitive data and provide bulletproof encryption to your online customers. Unfortunately, when something goes wrong with a certificate, it leads to big trouble. Browsers flag your website as Not Secure, you lose visitors, and to make things worse, cyber-thieves can use MITIM attacks to steal personal information. A valid SSL [...]

What is SNI (Server Name Indication) and how does it work?

Learning about SSL certificates and the underlying technology behind them is like sightseeing a new city and discovering smaller, less known attractions. Often you find an interesting building and wonder what’s in there? The same applies to Server Name Indication. You may have bumped into the SNI acronym on a web security forum or an [...]

What is new in TLS 1.3? A quick overview

TLS (Transport Layer Security) is the cryptographic protocol that provides communication security to all modern websites. First released in 1999 as an upgrade to now-deprecated SSL 3.0, TLS 1.0 evolved into TLS 1.1 and then, in 2008, into the current TLS 1.2 version. While TLS 1.2 has been an enormous success over the last ten years, [...]

What is OpenSSL and how it works?

SSL certificates are in high demand now. The encryption landscape has changed dramatically since Google launched the “HTTPS Everywhere” campaign. First, they gave an SEO boost as an incentive to install digital certificates, and later, Chrome made HTTPS all but mandatory for everyone. If you don’t use an SSL certificate, popular browsers such as Chrome [...]

Shared vs Private SSL Certificates – What’s the difference?

If you’re new to SSL certificates, they may seem quite puzzling at first. The SSL (Secure Sockets Layer) has long been replaced by the more secure TLS (Transport Layer Security) protocol, yet the old "SSL" acronym is still in use. All SSL certificates issued by trusted CAs offer the same level of encryption, but some [...]

What Are the Best SSL Management Practices in 2021?

SSL certificates have become an essential security element of any website. Long gone are the days when only e-commerce stores and financial institutions were using them. Today, even a basic website requires a digital certificate so it can work properly and do well in a competitive niche.  According to Google, more than 95% of the [...]

Root vs Intermediate Certificates – What is the difference?

At first glance, an SSL certificate seems straightforward. You install it on your server to secure your visitors’ sensitive data, and it works flawlessly until expiration. Most of the web owners rarely delve deeper into SSL/TLS technical aspects. They let professionals handle the certificate configuration and renewal. Many won't even care about the difference between [...]

More than Half of the Phishing Sites Use Free SSL Certificates

Phishing is one of the oldest scams in internet history, yet more than half of phishing sites use free SSL certificates trusted by every browsers and platform. Easy to implement, and extremely effective, phishing has survived the advancement of web security and is getting more sophisticated by the day. Phishing uses manipulation and deception techniques [...]

What happens when an SSL certificate expires?

In the grand scheme of things, SSL certificates have a relatively short lifespan. They can protect your website for up to two years before expiring. The imperative thing is to not miss the expiration deadline. If you don’t renew your certificate on time, prepare for the worst – the dreaded security warning message on your [...]

Multi-Domain vs. Wildcard SSL certificates – What is the difference?

Among all types of SSL certificates, Multi-Domain and Wildcard ones generate the most questions from the new users. While regular SSL certs secure just the main domain and are pretty easy to understand, Multi-Domain and Wildcard products are in a different class: more powerful, more flexible, and more expensive than their single-domain counterparts. Because both [...]

What is the best SSL Certificate for WordPress?

After Chrome and other browsers began flagging HTTP websites as “Not Secure”, the number of HTTPS websites has dramatically increased. And, with WordPress being by far the most popular CMS with a 60% market share, it’s currently witnessing a massive HTTPS migration. If you still haven’t encrypted your WP site, or you’re launching a brand [...]

A complete guide to SSL Certificate formats and conversion tools

It’s fairly easy to understand what an SSL certificate is and how it works. But when it comes to installing it on a server, sometimes, it may seem that you’re dealing with rocket science. With so many SSL certificate formats tied to specific server requirements, you’re more likely to get confused and frustrated rather than [...]

The Best SSL Certificates to Secure Emails and Documents

Your email is a sacred place. Whether personal or business, it oversees and stores the most intimate conversations, confidential correspondence, private documents, and favorite newsletters. Unfortunately, many users don’t pay much attention to email security and don’t use SSL Certificates to secure emails and documents. Cyber threats riddle the online world, email accounts being the [...]

What are CodeSigning Certificates and how do they work?

The CodeSigning certificates increase the trustworthiness of your software products. This type of certificate protects your digital downloadable goods, like scripts or codes, by signing them and guaranteeing their authenticity and integrity. This certification brings a greater level of your customers’ trust, by ensuring that your content is safe and it belongs to your company. Moreover, [...]

Whate are UCC/SAN SSL Certificates and how do they work?

The Subject Alternative Name (SAN) SSL certificate, also called the Unified Communication Certificates (UCC), the Multi-Domain SSL certificate or simply UCC/SAN SSL Certificates were particularly developed to secure multiple domains and sometimes subdomains by owning one single SSL certificate. This type of certificates ensure the security for both, your internal and external domains/subdomains and are fully compatible [...]

What are Extended Validation SSL certificates?

The Extended Validation SSL Certificates are the best choice if you want to build customer relationships based on security and trust. This certificate is issued only after the Certificate Authority (CA) performed an extensive verification of your company and its owner, confirming that your business is trustworthy. The validation process can take up to 10 business [...]

Wildcard SSL Certificate – The Ideal Solution to Secure Subdomains

The Wildcard SSL certificate was specifically designed for ensuring the security of your main domain, along with its multiple subdomains. For instance, if your site’s domain is, then the Wildcard certificate for “*” will secure an unlimited number of your first-level subdomains like,, or By buying this SSL certificate, you don’t [...]

Thawte SSL Certificates – Get the Highest Level of Security

Thawte is a truly international Certificate Authority. It has a 20-year experience of issuing over 945 thousand SSL certificates in more than 190 countries. After VeriSign’s acquisition of this company in 2000, Thawte is now a subsidiary of the most popular digital certification provider, DigiCert. Thawte has worldwide recognition as the first certificate issuer that [...]

What are Business Validation SSL Certificates?

The Business Validation (BV), also called Organization Validation (OV), SSL certificate is recommended if you have an e-commerce website that is a registered business. Besides the domain validation performed through e-mail, you will have to provide company documentation to receive business authentication. During this authentication process, the Certificate Authority (CA) will verify if your business [...]

What are Domain Validation SSL Certificates?

Domain Validation(DV) SSL certificates are the most affordable choice for increasing the security of your blog, personal or small business website. Since there is no required paperwork, the process of acquiring Domain Validation SSL Certificates is very quick and easy: you will have to prove that you are the domain owner just by responding to an [...]

GeoTrust SSL Certificates – Secure Your Site with a Top SSL Brand

GeoTrust is the second largest SSL certificate issuer, and it is owned by the most trusted internet security provider, DigiCert. The company was acquired in 2006 by VeriSign, which is now a DigiCert member since 2018. GeoTrust also owns a subsidiary company, RapidSSL, which is specialized in fast and simple website authentication. More than 100,000 [...]

DigiCert SSL Certificates – The Most Complete SSL Solution

When the most challenging encryption demands meet innovation and simplification, web security becomes easy. Since its arrival on the SSL stage in 2003, DigiCert has helped enterprises around the world secure clients’ sensitive data across the web. The indisputable leader among Certificate Authorities in the high-end market, DigiCert is the choice of major corporations, large [...]

How to Move a PrestaShop Site from HTTP to HTTPS?

PrestaShop is a popular, open-source e-commerce platform empowering small, medium, and large online stores. It’s packed with hundreds of free features such as a website builder, store templates, and payment modules. More than 270,000 e-commerce vendors use PrestaShop to sell their products online. By being open-source, PrestaShop benefits from superior security, transparency, and adaptability over [...]

Who Regulates Certificate Authorities?

A Certificate Authority (CA) is an entity that is trusted to sign a digital certificate. At SSL Dragon we always recommend buying an SSL Certificate from a reputable CA because it adheres to the highest encryption standards and security protocols. But if they are responsible for verification, approval, and revocation of SSL Certificates, who regulates Certificate Authorities? [...]

How to Move a Magento Site from HTTP to HTTPS?

Magento is a leading eCommerce platform, and CMS software built on open source technology. It empowers over 200,000 online retailers to date and is growing by the year. One of every four online businesses uses Magento to sell products and services through the internet. As powerful as it is, Magento alone can’t fully optimize your [...]

How to Move a Joomla Site from HTTP to HTTPS?

Joomla is an open-source, award-winning content management system used all over the world to power personal blogs, e-commerce platforms, government websites, and any other kind of web project. Joomla’s highly flexible core framework helps novice users to easily set up and manage their sites. It also allows experienced developers to create sophisticated systems, and tap [...]

How to Move a Drupal Site from HTTP to HTTPS?

Drupal is one of the most powerful content management systems available today. Used by millions of websites, both large and small, this open-source platform is highly scalable and lightning fast. If your website runs on Drupal, you’re in very good company. The White House, Australian Government, The Weather Channel, and NBC, are just a few [...]

What Are the Most Common SSL Errors and How to Fix Them?

The dreaded SSL connection errors may appear out of nowhere or may be the consequence of lousy SSL implementations. One thing is for sure, you don’t want your visitors to read alarming messages when loading your website. Browser notifications such as “Your connection is not private”, “The site’s security certificate is not trusted”, or “Secure [...]

How to Move a WordPress Site from HTTP to HTTPS

WordPress is one of the most popular CMS platforms in the world. It powers around 25% of all websites on the Internet today. Whether you’re a novice user or an experienced administrator, learning how to move a WordPress site from HTTP to HTTPS should be one of your top priorities. Gone are the days when [...]

10-Point SEO Checklist for a Successful HTTPS Migration

On August 6, 2014, Google added HTTPS to its list of important ranking signals. The SSL SEO boost sparked a massive migration from HTTP to HTTPS. Websites rushed to encrypt their connections to gain a competitive edge over competitions. Three years later, Chrome began flagging HTTP sites as not secure. With HTTPS encryption all but [...]

RapidSSL Certificates – Get Them Within Minutes

As their name says, RapidSSL Certificates offer you a quick and easy website authentication process. Even though their certificate is issued in a couple of minutes, it has strong data SSL encryption up to 256-bit. This ensures the ultimate secure connection between your clients and your website’s server. RapidSSL is a subsidiary company of GeoTrust, [...]

Sectigo SSL Certificates – Incredibly Cheap but Highly Flexible

Sectigo is a leading SSL Certificate Authority among business and personal website owners. With more than 36% share of the SSL certificate market, it offers digital security services for over 3 million customers. The company was the first Certificate Authority to release the Extended Validation (EV) certificate. The Sectigo SSL certificate guarantees the connection encryption between [...]

What is the SSL Strip and How You Can Prevent It

Since their introduction to the commercial market, SSL Certificates have gone through major security updates, and now boast an almost unbreakable level of encryption. However, the continuous SSL improvements, haven’t discouraged cynical attackers to come up with creative ways to try and steal the encrypted data. Although we’ve already written about the notorious man-in-the-middle-attacks, and [...]

Positive vs Essential Wildcard SSL – What is the difference?

When browsing through a list of SSL products, the vast number of certificates may confuse you, especially if various SSL types fall under the same brand. An eloquent example of users’ struggles to distinguish one certificate from another is Positive SSL Wildcard and Essential SSL Wildcard certificates. Positive SSL The similarities between them have left [...]

What is SSL Certificate warranty and how does it work?

When you’re shopping for an SSL Certificate, your primary concerns are usually the price, validation type, issue time and browser compatibility. When analyzing the specifications closer, you discover that every SSL product comes with an SSL Certificate warranty. The warranty ranges greatly from certificate to certificate. Whether it’s just $10,000, or a whopping $1,500,000, an extra assurance [...]

Go to Top