Frequently Asked Questions

Frequently Asked Qustions

SSL Certificates can be very confusing for most people even the highly experienced IT professional, we have tried to compile these faq's to assist you with the most common questions we have encountered through talking with several clients, however if you don't see a specific question answered here please let us know and we will do our best to have it posted for other clients.


What is SSL?

What does the Warranty actually mean?
Technical Info
Will certificates be compatible with more Web browsers in the future?
What Web servers are compatible with SSL certificates?

How do I create a certificate signing request?
How do I submit my CSR to EBIZID?
How do I install my SSL certificate?
What are the Replacement Policies offered by EBIZID?

My Server Crashed and I lost my Certificate, How can I get my Certificate Replaced?

How long should it take to issue an SSL Certificate?
Can I have my application expedited?
Why are test certificates important?

What is E-ID?
What are the main differences between validation methods used by different SSL Providers?
Does strong validation really matter?
Why is Customer Support important?

Why the massive differences in price of Certificates from different CAs?
Why is "Browser Compatibility" so important?
What browser ubiquity do I need?
Should I opt for an SSL Provider who is compatible with older browser versions?
How about opting for an SSL Provider who only has browser compatibility with Internet Explorer?
Can I expect web server compatibility issues?
What about previous versions of the SSL Protocol?

FAQ's for ISP's

Do you offer identity solutions for my non-SSL hosted customers?

Server Specific Frequently Asked Questions:

Microsoft IIS 4

Microsoft IIS 5

Apache

Submitting your CSR

What is SSL?
SSL stands for Secure Sockets Layer, and it is the industry standard method for protecting web communications developed by Netscape Communications Corporation. The SSL security protocol provides data encryption, server authentication, message integrity, and optional client authentication for a TCP/IP connection. Data sent via an SSL connection is protected by encryption, a mechanism that prevents eavesdropping and tampering with any transmitted data. SSL provides businesses and consumers with the confidence that private data sent to a Web site, such as credit card numbers, are kept confidential. Web server certificates are required to initialize an SSL session.
^Top

What does the Warranty actually mean?
We believe it is important to protect the end user. If we were to mis-issue a certificate to a fraudulent site, and that fraudulent site has an SSL link with an end user and as a result of this the end user loses money. The end user had what they thought was a "trusted session". EBIZID should never have provided the fraudster with the ability to engineer this situation. Hence, we have taken out insurance to pay out money to the end user. How can we do this?

1. We value the end customer
2. We believe the insurance provided greater peace of mind hence allows the merchant to sell more products
3. Most importantly, we value our validation techniques and our live human validation procedures.

We provide validation that is far higher than the majority of other SSL providers. Some CA's have very weak validation hence they decide NOT to offer insurance! Finally, it is worth pointing out, that we offer high validation, but not at the compromise of speed.
^Top

What are the differences between your certificates and other providers certificates?
EBIZID has evolved from a reseller to an actual provider of our own branded certificates
We choose to compete in terms of quality, support and validation process. We do not rely on volume sales as other CA's to lower the cost of generating certificates. this allows us to be more competitive in the market place for a high quality competitively priced security solution.
^Top

Technical Information
What Web browser programs are compatible with your SSL certificates?
Most of our certificates are compatible with Microsoft Internet Explorerâ„¢ 5.01 and higher and Netscape/AOL Web browsers version 4.51 and higher, comprising an estimated 90% or more of all Web browsers in use today. All other commonly used browsers may connect securely with Web servers using QuickSSL certificates. However, some older browsers may display a dialogue box indicating that the certificate is not trusted. This means that the certificated is not located in the browser certificate store and, in most cases, the user will be prompted to install it with a few clicks of their mouse.
^Top

Will certificates be compatible with more Web browsers in the future?
There are many browser development projects in the world today as of 2012 and many more are expected to be created however EBIZID intends to provide our ssl certificates to be compatible with the ongoing technology. In just 10 years we have went through several upgrades to our root certificates from 48, 128 and now 2048 bit.
^Top

What Web servers are compatible with SSL certificates?
EBIZID SSL certificates are compatible with all major Web servers.
^Top

How do I create a certificate signing request?
See CSR generation instructions (certificate signing request).
^Top

How do I submit my CSR to EBIZID?
We have 2 methods of submitting your CSR.
1. Submit your CSR through the order form when you place your first order.
2. You can submit your CSR through the Support tracking system if you have not done so during the order process. Please be sure to fill out your ticket completely so that our tech's have all your order information to process your order quickly.
^Top

How do I install my SSL certificate?
See SSL installation instructions.
^Top

Why is "Browser Compatibility" so important?
SSL Certificates will only be trusted by a browser if the Root Certificate of the CA is present within the "trusted Root Certificates" store of the browser. CA Root Certificates are added into the trusted Root Certificate store by the browser or operating system vendor, such as Microsoft or Netscape.
^Top

If you use an SSL Certificate that has been issued by a CA Root Certificate not present in the trusted Root Certificate store, your browser will display warning messages. Clearly you need to avoid such warnings. Ensure you avoid such warnings by selecting an SSL Provider with a high browser acceptance level in both Internet Explorer and Netscape.
^Top

What browser ubiquity do I need?
Anything less than 99% browser ubiquity will cause issues with some customers - customers who may otherwise purchase from your site: REMEMBER CUSTOMERS = $$!
^Top

EBIZID , provides 99% browser ubiquity and is included in the base install of Windows 98SE, ME, 2000, XP, Vista, and Windows 7.
^Top

Should I opt for an SSL Provider who is compatible with older browser versions?
You can of course examine your web logs to determine the browsers used by your customers. However, it is unlikely that a paying customer will still be using IE4.00 or even IE3.00. The demographic studies conclude that such web site visitors will more than likely make little difference to your bottom line!
^Top

How about opting for an SSL Provider who only has browser compatibility with Internet Explorer?
Warning: purchasing SSL Certificates from companies compatible only with IE represent a dangerously low browser ubiquity. It is not viable to remove all Netscape customers from trusting your web site's SSL Certificate. If you require any level of trust from your customers you should opt for an SSL Provider who provides high browser coverage in all majpor browsers such as IE, Netscape, Firefox and Chrome.
^Top

EBIZID uses one or more 'intermediate certificates' - does this make any difference to me?
Sometimes the CA will use 'intermediate certificates' to issue your SSL Certificate - essentially a certificate issued by the Trusted Root CA specifically designed to issue SSL Certificates to end entities. An intermediate certificate is effectively a subordinate Certificate issued by the CA Root Certificate, thereby creating a chain of trust which may be traced back to the trusted CA Root Certificate. Using intermediate certificates do not cause installation, performance or compatibility issues.
^Top

Can I expect web server compatibility issues?
An SSL Certificate is an industry standard product. All Certificates follow the X.509 standard, therefore any SSL version 3 enabled web server software will be able to utilize an SSL Certificate.
^Top

What about previous versions of the SSL Protocol?
SSL version 3 is the de facto SSL implementation. SSL version 1 and version 2 have been superseded by version 3 for a number of years, mainly due to the inherent security flaws found in these old versions. All web browsers developed after Internet Explorer 3 and Netscape 3 use SSL version 3 (however still support older SSL protocol versions). If your web server is only capable of supporting versions 1 and 2 of the SSL protocol we strongly recommend you contact your web server software vendor for an update - these protocols are flawed. For more details on why SSL version 2 is no longer used can be found here: http://www.eucybervote.org/Reports/MSI-WP2-D7V1-V1.0-02.htm
^Top

Issuance Speed FAQ:

How long should it take to issue an SSL Certificate?
The validation level and validation process will affect how long it takes for the SSL Provider to deliver your SSL Certificate. Most applications are issued within 1-3 working days following receipt of the necessary documentation. EBIZID uses a dedicated team of validation experts to ensure the highest quality validation.
^Top

Can I have my application expedited?
EBIZID offers an Accelerated Validation Service to customers who need certificates almost instantly. The Accelerated Validation Service does not compromise validation levels like other providers methods.
^Top

Price FAQ:

Why the massive differences in price of Certificates from different CAs?
Until recently the SSL Certificate market has been dominated by a small number of players, namely Verisign and Thawte. Whilst in a monopolistic position they had the capability of charging inflated prices for a commodity product. However, recent months have seen the emergence of new providers like EBIZID who have for the first time offered SSL at reasonable prices.
^Top

Remember that SSL Certificates are technically identical. Low price SSL Providers such as GeoTrust and IPSCA offer Certificates with lower browser compatibility and potentially dangerously low levels of validation by only validating the domain name ownership and not validating that the applicant is a legitimate legal entity. EBIZID offers the lowest price currently available yet validates strongly and provides the same browser coverage as Verisign, Thawte, Baltimore and Entrust.
^Top

Validation FAQ:

What are the main differences between validation methods used by different SSL Providers?
Validation procedure falls into two camps: manual validation and automated validation. Traditionally manual validation (as used by Verisign, Thawte, Entrust, Baltimore) generally takes longer than automated validation. Automated validation as used by other providers does not provide the level of assurance expected by consumers relying on SSL. Automated Validation only validates the applicants right to use a domain name and not the legitimacy of the company itself.
^Top

EBIZID uses strong manual validation and therefore ensures that we only issue SSL Certificates to legitimate businesses / individuals and that they are the legal owner, or have the right to use, the domain name to which the SSL Certificate will be issued. We have a team of expert validation staff who validate applications around the clock to ensure we can still offer a fast service without the compromise of validation quality.

If you require your SSL Certificate immediately then we do offer an Accelerated Validation Service. You can opt for this feature when you purchase a certificate and we guarantee that your application is validated and your certificate issued no matter what the time of day!

Does strong validation really matter?
Validation is essential - it provides the underlying trust consumers have with the SSL protocol. Consumers, whether they realize it or not, will expect a two step validation process. Firstly the applicant must be deemed to have a legitimate right to using a domain name, and secondly the applicant must be a legitimate legally responsible entity.
^Top

Why is Customer Support important?
EBIZID will be on hand to help you through the process and to answer any queries you may have. View the support summary page to view how SSL Providers differ in the level of support provided and the availability of support staff.
^Top

What are the Replacement Policies offered by EBIZID?
In the event that your private key has been corrupted or inadvertently lost you will need a replacement Certificate, if this falls within 30 days of your order we will re-issue you a new certificate for that of the same domain that was on your original order. We will re-issue your certificate for the certificate of the same domain name if you had trouble installing your certificate and it became corrupt during the install (you should always make a backup first) You may also need a replacement if you accidentally provide incorrect information when making your initial request, in this instance we will at our option re-issue you a new certificate as long as the information in your validation still matches the information for your domain name. Typical replacement certificates procedures can take as long as 72 hours.
^Top

My Server Crashed and I lost my Certificate, How can I get my Certificate Replaced?
EBIZID offers a 30 day re-issuance policy, in the event that your server has crashed or you lost your data we will re-issue your certificate for up-to 30 days after the purchase date free of charge, if you are beyond your 30 days period we also offer a Certificate Vault Service, we encourage all clients to purchase the Vault Service while placing your order for a discounted price. If you wish to purchase the vault service anytime during the validity period of your certificate and after 30 days have past the cost of the Vault service is $29.00 per validity period and must be purchased for the full length of the period the certificate was originally purchased.


Test Certificates FAQ:

Why are test certificates important?
Installing and configuring SSL can be difficult even for the most experienced system administrators and technical managers. Using Test Certificates on test configurations may well be an essential part of successfully using SSL commercially. In such cases, we highly recommend the use of Test Certificates as part of your buying process.
^Top


E-ID FAQ:

What is E-ID?
Once you purchased and installed your SSL Certificate it is essential to promote your "secure site" status to customers. EBIZID will provide you with a "E-ID" graphic to display in a prominent location on your web site.
^Top

For ISP's
Is there an easier / faster way to send you my customer's requests?
Please contact us at: 313-299-0593 or email us.

Do you offer identity solutions for my non-SSL hosted customers?
Yes! We we offer a wide range of Identity solutions such as the E-ID trusted logo.
^Top