Why are Symantec s SSL certificates so expensive?

Symantec's certificate uses industry-leading encryption technology, at least 128 bits of security encryption, Symantec's certificate supports RSA DSA ECC algorithms, generally other certificates do not support, in addition to the implementation of HTTPS encryption, Symantec certificate can also scan for malware and evaluate vulnerabilities, which is not available in other certificates. In addition, the commercial insurance payout of Symantec certificate is as high as 1.75 million US dollars, so Symantec's SSL certificate can be said to be the most expensive in the industry.

Symantec's certificate application also requires a lot of information, not only to verify the domain name ownership and enterprise information, but also to require a lawyer's letter, fixed ** and a series of supporting documents, Symantec certificate provides strict identity verification and Norton security signature that cannot be counterfeited, which is also not available in other certificates, in addition, Symantec's certificates are advanced certificates, there is no DV such a basic certificate.

Symantec's compatibility is also the best, compatible with all browsers on the market, and it is also very compatible with mobile terminals, with fast response speed and unquestionable security. An expensive SSL certificate depends on the credibility of the company, and the certificate of a well-known company is naturally high, in addition to the ability of the issuing company to protect the certificate key, certificate maintenance, renewal, guarantee, compensation and other matters.

Just like a car, the same is a car, BMW, Mercedes-Benz, and Audi are very high.

SSL is also priced according to the brand reputation and service Internet trust, so the ** you see is expensive, of course, you get what you pay for, after all, Symantec is the best SSL certificate in the industry, and the use of the certificate is also beautiful.

SSL certificates are all verified by CA and are secure.

I think the SSL certificate is expensive, but I guess I still don't know enough about it. SSL certificates are not the same due to different brands and categories. The following is a brief analysis of the types of SSL certificates, and users can choose the appropriate SSL certificate according to their actual situation.

DV SSL certificate: Because of its simple review method (verifying the ownership of the domain name) and fast issuance speed (issued in about 10 minutes), it is also relatively cheap, generally about 100 yuan can be done, suitable for personal stations or blogs.

OV SSL certificate: In addition to verifying the ownership of the domain name, it is also necessary to verify the relevant information of the enterprise to ensure that the enterprise is real, and it will be issued within 3-5 working days after manual review, ranging from 100 yuan to 1,000 yuan, suitable for small and medium-sized enterprises.

EV SSL certificate: the audit is super strict, on the basis of the OV type, it is also necessary to provide a letter of opinion from Dun & Bradstreet or a lawyer, after manual review, issued within 3-7 working days, ** ranging from 1000 yuan to 10,000 yuan, its security level is also the highest, suitable for banking financial institutions, large-scale e-commerce**, etc.

The current SSL certificate is actually not expensive, if it is based on the DV single domain name type, it is only a few hundred years.

Symantec is the world's leading provider of information security solutions by providing the most trusted Norton Signature service.

Reasons why Symantec certificates are expensive:

1. Serving the high-end market, Symantec SSL certificate does not have a DV certificate, because it is very rigorous, OV or EV need to provide corporate identity, some licenses, etc., to confirm the authenticity before installation, the more complex the process, the more expensive it is.

2. Provide Norton Seal service, Norton Secure Seal is the most trusted mark on the Internet, when users click on Norton Secure Seal, a secure verification page will be opened, which contains your company's information, malware scan status, and SSL certificate details.

3. When purchasing a Symantec SSL certificate, it is equivalent to buying insurance for the user, if the loss is caused to the user because of the problem of the certificate authority, the agency will pay to a certain extent, the compensation amount of different certificates varies greatly, the insurance amount of the Comodo SSL certificate is about 250,000 US dollars, and the Symantec SSL certificate includes a warranty of 1,500,000 US dollars, ** expensive, of course, the insurance amount will not be low.

1.Certificate Cost Reason: The main cost components of a CA certificate company:

Audit, verify CSR costs, support costs, legal costs (insurance costs, guarantee costs). To get into the list of root certificates for each browser, the CA company has to go through the WebTrust annual audit every year, which is a big overhead. In addition, due to the difference in the cost of domestic first-class merchants and the pursuit of profits, there are also many differences in the selling prices of each company.

2.Certificate brand and type reasons: OV SSL certificate and EV SSL certificate are higher than DV certificates because they need to occupy CA human resources to review the qualifications of enterprises; In terms of brands, such as Symantec (Digiticert), because the certificate comes with daily virus scanning and automatic anti-virus function, it is **higher than other brands.

Brand awareness and safety standards, Symantec is currently acquired by Digicert.

Why: On August 2, 2017, CA certification bodies Symantec and Digicert announced the acquisition of Symantec's security certification business.

Upon completion of the transaction, Symantec will own approximately 30% of Digicert's common stock, which will pay approximately $100 million in cash.

Digicert is a leading provider of scalable identity and encryption solutions for enterprises.

Workaround: You can apply for a Digicert certificate at GWORG.

The reason why Symantec's SSL certificate is the most expensive is because Symantec is the world's largest digital certificate authority (CA), the world's most trusted SSL certificate brand, its security reputation is relatively large, it can better reflect the security authority, and it is also the earliest to enter the Chinese market, and many large enterprises are using Symantec's security certificate.

Of course, Symantec's SSL certificate has its own unique advantages and characteristics, Symantec's certificate uses industry-leading encryption technology, at least 128 bits of security encryption, Symantec's certificate supports RSA DSA ECC three algorithms, generally other certificates do not support, in addition to the implementation of HTTPS encryption, Symantec certificate can also scan for malware and evaluate the function of vulnerability, This is not available with other certificates, and the commercial insurance payout of Symantec certificate is up to $1.75 million, so Symantec's SSL certificate can be said to be the most expensive in the industry.

Symantec is the first to enter China, and does not provide a domain name type that is the basic version of the SSL certificate, Symantec has the industry-recognized Norton security seal, in addition to the vulnerability scanning function that any other SSL certificate does not have. It is the best choice for some large e-commerce and financial institutions, and many domestic banks and financial institutions use Symantec certificates, and all Symantec certificates are much more expensive than other certificates.

Solution: SSLDUN provides a comparison of certificates**.

Symantec only offers certificates for OV and EV enterprise use.

Explain why: Symantec also has anti-virus software, and the brand has strong security expertise.

Only OV and EV certificates are supported, and enterprise certificates have always been more expensive.

And it has a brand signature and a first-class security vulnerability scanner, which represents an industry standard after certification.

The Symantec SSL certificate has been acquired by Digicert, so there is currently only a Digicert certificate.

Workaround: You can apply for a certificate at GWORG.

Buy a new certificate.

According to the current standard for the issuance of SSL certificates, the validity period of the SSL certificate cannot exceed 24 months, and the validity period issued by most CA institutions is calculated on an annual basis, so the SSL certificate on the market is two years.

After an SSL certificate expires, you cannot continue to use it and you need to renew it before the certificate expires. After the renewal is completed, you need to review it again, and after the review is passed, you will get a new SSL certificate, and then you can install a new SSL certificate on the server to replace the expired SSL certificate.

It is no longer possible to issue digitally signed certificates with the SHA-1 algorithm. The certificate encryption strength of the SHA1 algorithm is too low, and SHA-2 has higher security than SHA-1. Compared with the SHA-1 algorithm, the SHA-2 algorithm has not been cracked so far, and in a sense, SHA-2 continues to use the SHA-1 algorithm, so at least it is safe from the time of posting.

GWORG renewals.

Explain the BAI reason:

Symantec has now been acquired by Digicert for DU.

The business brand related to Symantec SSL certificate has been completely discontinued.

An expired SSL certificate will re-obtain a DAODIGICERT type SSL certificate.

Solution: You can renew your SSL certificate for 2 years at GWORG.

Generally, the service life of an SSL certificate is 1 2 years, and the renewal of an SSL certificate is different from the renewal of a domain name, and the SSL certificate needs to replace the SSL certificate file that is about to expire with a new certificate file.

In other words, renewing an SSL certificate is equivalent to purchasing a new certificate, and the renewal process is the process of installing the SSL certificate. You can contact the SSL certificate provider (Essence SSL certificate) to purchase and install the SSL certificate again.

Just contact the SSL certificate provider directly to renew the fee. Essence provides services for applying for renewal and installation of SSL digital certificates from many global authoritative CAs such as Symantec, Geotrust, Comodo, RapidSSL, Thawte, GlobalSign, AlphaSSL, etc.

GWORG can directly renew Symantec SSL certificates.

Why: Symantec is currently being acquired by DigiCert.

The business brand related to Symantec SSL certificate has been completely discontinued.

An expired SSL certificate will re-obtain a Digicert type SSL certificate.

Solution: You can renew your SSL certificate for 1 year at GWORG.

Answer: Not recommended

Clearly stated:

CA institutions do not have a free SSL certificate, please be clear about this point!

The function of any product to express the value of SSL certificate is also the basic condition of human activity economy!

Economics: Of course he has a private jet for free. (I'm sure you'll make the right judgment).

Explain why:

Any authoritative top CA institution, CA institution is not a free SSL certificate product!

The ** of the SSL certificate commodity is negatively correlated with labor productivity.

CA institutions require significant operating costs, yet these require strong capital to stay afloat.

The cycle of value can be divided into three basic stages: the consumption stage (use value labor potential), the labor stage (labor potential), and the production stage (labor value and new use value).

Why is there a free SSL certificate: This is because of the product of the establishment of the dealer's intermediate certificate, this SSL certificate has a very low degree of trust, his lifeline is suspended at any time, and they have no responsibility and obligation to promise you, which is equivalent to a separating knife in the most vulnerable place of your life! All kinds of unsafe security hazards, free random issuance of SSL certificates or theft of SSL certificates will be punished or revoked, is an extremely undesirable choice!

Disclaimer: No authoritative CA has a free SSL certificate product, and any security or trust issues arising from this have nothing to do with CA institutions!

Symantec digital certificates are a high-end SSL certificate brand that provides a secure network information channel between users and servers. Impressive.

Symantec digital certificates are used by Fortune 500 companies, more than 100 banks, and 94% of the world's leading e-commerce platforms.

Symantec SSL certificate is committed to building a high-end server certificate brand, and only provides high-end SSL certificates: OV SSL CERTIFICATE and EV SSL certificate, while Symantec DV SSL certificate is a free trial SSL certificate, which can be applied for at relevant ** providers.