Jump to content

  • You cannot start a new topic
  • You cannot reply to this topic

Buy SSL Certificates - up to 80% off Rate Topic   - - - - -

 
  • Struck
  • Teetering on Genious
  • Members
  • Join Date: 07-Mar 09
  • 2502 posts

Posted 29 January 2010 - 02:56 AM #21

The main difference between SSL certificates is the level of identity verification:


And price justified by confusion marketing tactics! :D

In the nearly 10 years of online selling, we have never had a customer tell us "You have a cheap SSL Certificate, so we won't buy any products from your site" LOL
Cooking with Gas on Version 4.1.2 (But proceeding with caution....)

 
  • indy0077
  • Senior Member
  • Banned
  • Join Date: 03-Nov 09
  • 1431 posts

Posted 29 January 2010 - 03:14 AM #22

In the nearly 10 years of online selling, we have never had a customer tell us "You have a cheap SSL Certificate, so we won't buy any products from your site" LOL

It's not just about price. It's about trust that you are the owner of your ecommerce site and your company is legal.

Just google "louboutin" and visit any of listed shops there. They are all chinese and indian stores which sell fakes. Go to checout and look if they have any SSL cert. NO. Because they will never get one.
.
CS-Cart Professional €160.00 | CS-Cart Multi-Vendor €625.00 | CS-Cart Hosting | SSL Certificates
.
CS-Cart Optimized Servers *** USA & UK VPS Servers

 
  • jobosales
  • Senior Member
  • Members
  • Join Date: 04-Nov 06
  • 3114 posts

Posted 29 January 2010 - 05:18 AM #23

It's not just about price. It's about trust that you are the owner of your ecommerce site and your company is legal.

Just google "louboutin" and visit any of listed shops there. They are all chinese and indian stores which sell fakes. Go to checout and look if they have any SSL cert. NO. Because they will never get one.

You missed his point which is that few would notice if you have a 'low assurance' or 'high assurance' certificate (which is kind of consistent with your explanation). Otherwise, we would all need EV certs to gain customer's trust.

Bob
CS-Cart 2.0.14 (testing)

 
  • Traveler
  • Senior Member
  • Members
  • Join Date: 02-Feb 07
  • 899 posts

Posted 29 January 2010 - 05:43 AM #24

And price justified by confusion marketing tactics! :D

In the nearly 10 years of online selling, we have never had a customer tell us "You have a cheap SSL Certificate, so we won't buy any products from your site" LOL


Exactly my experience.

I always buy the cheapest single root certificate and never have any problems.

Version 4.9.2


 

Posted 29 January 2010 - 07:38 AM #25

I just purchased an EV SSL for the business; it's becoming more apparent that mature (35+) will only purchase when they see visual indicators on the website they are purchasing from.

Considering that the Blue/Green bar is becoming increasingly considered the "security" measure it's straight forward and without doubt for them to purchase then and there.
I've moved on from CS-Cart to WooC******** - If you need anything I can be of little help.

 
  • Noman
  • Senior Member
  • Members
  • Join Date: 29-Oct 07
  • 526 posts

Posted 29 January 2010 - 08:58 AM #26

I just purchased an EV SSL for the business; it's becoming more apparent that mature (35+) will only purchase when they see visual indicators on the website they are purchasing from.

Considering that the Blue/Green bar is becoming increasingly considered the "security" measure it's straight forward and without doubt for them to purchase then and there.




To make more money, they will soon announce bars in pink then black and ones with stripes. Marketing guys will confuse you as much as they can.

Have you ever heard about anyone being able to generate a fake SSL certificate with Veri or Geotrust name in it? Never. So, why the panic? All of my customers use SSL for £10 for the last 4 years and are very happy.
I'm Number 1, so why try harder?

CIA wannabe or having doubts and need some answers?
Spy Gadgets and CCTV Equipment

 
  • dragondf
  • Senior Member
  • Members
  • Join Date: 02-Nov 07
  • 211 posts

Posted 29 January 2010 - 03:30 PM #27

There are 2 main categories of SSL certificates:

1) To encrypt communication between the browser of the visitor and the web server
2) Same as 1) + to verify the authenticity of the website you are on



The main difference between SSL certificates is the level of identity verification:

The main difference is the level of authentication done.

For example RapidSSL will only verify the domain name. So if you request an SSL certificate for say yourdomain.com, GeoTrust (provider of RapidSSL) will send an email to the WHOIS contact for yourdomain.com. Thus only the domain owner will receive it and be able to confirm he owns the domain name.

Then you can opt of a QuickSSL from GeoTrust which is more expensive, but still only verifies the domain name. The difference (apart from price) is that you receive a site seal. The purpose of the site seal is to increase trust between you and your visitors. The site seal is dynamic and will thus display your domain name in the site seal. The same level of verification is done as the RapidSSL which is considerably cheaper.

Moving up in the GeoTrust chain, we have the True BusinessID certificate. This takes validation a step further by validating your business. This may involve them calling the company number or sending a letter to the official company address. Once you receive the letter you will then confirm with GeoTrust that you have and provide any necessary information. You may have to provide identification information to them. This all depends on how thorough the company you are purchasing the certificate from decides to be.

This method further boosts consumer confidence. The encryption still remains the same (it may support higher encryption strength) but the validation process is the main thing that has changed. It will still function the same as their cheapest certificate, except that the level of authentication is more in depth. Your visitors can see that not only is the domain verified but your address is also correct and accurate.

Typically e-commerce sites with high volume will go for this option.

Extended Validation (EV) certificates

You may have noticed that on some sites you visit, your address bar turns green. That is because the company is utilising an extended validation certificate. This doesn't mean they are any more or less secure, but the validation & authentication process is even more thorough. Wikipedia explains the process pretty well:



Hello Indy 007-7 (Bond, Indy Bond....ehehehhe) :)

There are 2 main categories of SSL certificates:

1) To encrypt communication between the browser of the visitor and the web server
2) Same as 1) + to verify the authenticity of the website you are on



In my case, I think that just NUMBER 1 is sufficient.
Why: because people will know that we really exists because we have advertising a lot of places, so... "authenticity of the website" I think will not be very important for us.
Maybe if we were goingo to sale around the world or something like that. But in our area people can see who we are using WHOIS.

In this example I think it is very important to use a SSL certificate to:

1) To encrypt communication between the browser of the visitor and the web server


So, I think I can use it in LOGIN FORM and PAYMENT PROCESS.


I think this could be used for 1 more thing:
1. CLIENT LOGINS HIS ACCOUNT.
2. HE SEND FOR YOUR SERVER SOME DOCS YOU NEED TO ALLOW A SALE.
These docs will be sent encrypted.

Some companies ask the client to send files that prove client is really that person. Some of them ask the client to send all data BY EMAIL what is very unsafe.



By the way... no answer about SSL certificate in CS-CART.
Is there any doc about it?


Tks!
"Tenho-vos dito isto, para que em mim tenhais paz; no mundo tereis aflições, mas tende bom ânimo, eu venci o mundo". João 16:33
--
"I have told you these things, so that in me you may have peace. In this world you will have trouble. But take heart! I have overcome the world". John 16:33
www.companhiadanutricao.com.br

 
  • indy0077
  • Senior Member
  • Banned
  • Join Date: 03-Nov 09
  • 1431 posts

Posted 29 January 2010 - 03:57 PM #28

CS-Cart uses SSL encryption on/in:

1) checkout page
2) administration panel
3) authentication, profile and orders pages

All SSL settings are optional.
.
CS-Cart Professional €160.00 | CS-Cart Multi-Vendor €625.00 | CS-Cart Hosting | SSL Certificates
.
CS-Cart Optimized Servers *** USA & UK VPS Servers

 
  • Noman
  • Senior Member
  • Members
  • Join Date: 29-Oct 07
  • 526 posts

Posted 29 January 2010 - 03:59 PM #29

I have it also in Contact Us ;)

CS-Cart uses SSL encryption on/in:

1) checkout page
2) administration panel
3) authentication, profile and orders pages

All SSL settings are optional.


I'm Number 1, so why try harder?

CIA wannabe or having doubts and need some answers?
Spy Gadgets and CCTV Equipment

 
  • dragondf
  • Senior Member
  • Members
  • Join Date: 02-Nov 07
  • 211 posts

Posted 29 January 2010 - 04:05 PM #30

CS-Cart uses SSL encryption on/in:

1) checkout page
2) administration panel
3) authentication, profile and orders pages

All SSL settings are optional.


Yes,

But my doubt is: when I choose it in admin panel it will work direct, without need to adjust any other file or directory?

for example:

MYDOMAIN.COM/admin.php?dispatch=settings.manage

There you can adjust about ssl connection.

My doubt is: is just click there and it will start SSL (https) when a client you login or something else?

I thougth I would need to adjust others files to configure it.
If not, better.

Tks!
"Tenho-vos dito isto, para que em mim tenhais paz; no mundo tereis aflições, mas tende bom ânimo, eu venci o mundo". João 16:33
--
"I have told you these things, so that in me you may have peace. In this world you will have trouble. But take heart! I have overcome the world". John 16:33
www.companhiadanutricao.com.br

 
  • dragondf
  • Senior Member
  • Members
  • Join Date: 02-Nov 07
  • 211 posts

Posted 29 January 2010 - 04:08 PM #31

I have it also in Contact Us ;)


heheheheeh

Very good idea. All information your client want to ask you is a privilege data and nobody could get it.

I think I will do the same.
Could you explain how did you do it, Noman?


Tks!
"Tenho-vos dito isto, para que em mim tenhais paz; no mundo tereis aflições, mas tende bom ânimo, eu venci o mundo". João 16:33
--
"I have told you these things, so that in me you may have peace. In this world you will have trouble. But take heart! I have overcome the world". John 16:33
www.companhiadanutricao.com.br

 
  • Noman
  • Senior Member
  • Members
  • Join Date: 29-Oct 07
  • 526 posts

Posted 29 January 2010 - 04:15 PM #32

In Admin...

Content -> Pages -> Contact Us -> Form Builder and select Form is secure (SSL).

You can do this for any form you use on your website.
I'm Number 1, so why try harder?

CIA wannabe or having doubts and need some answers?
Spy Gadgets and CCTV Equipment

 
  • dragondf
  • Senior Member
  • Members
  • Join Date: 02-Nov 07
  • 211 posts

Posted 29 January 2010 - 04:19 PM #33

In Admin...

Content -> Pages -> Contact Us -> Form Builder and select Form is secure (SSL).

You can do this for any form you use on your website.



:)

Very nice.


Thanks!
"Tenho-vos dito isto, para que em mim tenhais paz; no mundo tereis aflições, mas tende bom ânimo, eu venci o mundo". João 16:33
--
"I have told you these things, so that in me you may have peace. In this world you will have trouble. But take heart! I have overcome the world". John 16:33
www.companhiadanutricao.com.br

 
  • indy0077
  • Senior Member
  • Banned
  • Join Date: 03-Nov 09
  • 1431 posts

Posted 29 January 2010 - 04:32 PM #34

But my doubt is: when I choose it in admin panel it will work direct, without need to adjust any other file or directory?

Very important is to choose the right domain for the SSL registration (with or without www) and then you have to make changes in your config.local.php file in the line:

// Host and directory where software is installed on secure server
$config['https_host'] = 'yourdomain.com'; (or www.yourdomain.com)
$config['https_path'] = '/';


.
CS-Cart Professional €160.00 | CS-Cart Multi-Vendor €625.00 | CS-Cart Hosting | SSL Certificates
.
CS-Cart Optimized Servers *** USA & UK VPS Servers

 
  • dragondf
  • Senior Member
  • Members
  • Join Date: 02-Nov 07
  • 211 posts

Posted 29 January 2010 - 05:14 PM #35

Very important is to choose the right domain for the SSL registration (with or without www) and then you have to make changes in your config.local.php file in the line:


Yes, it was about this that I were talking about.

Thanks!
"Tenho-vos dito isto, para que em mim tenhais paz; no mundo tereis aflições, mas tende bom ânimo, eu venci o mundo". João 16:33
--
"I have told you these things, so that in me you may have peace. In this world you will have trouble. But take heart! I have overcome the world". John 16:33
www.companhiadanutricao.com.br

 

Posted 29 January 2010 - 05:26 PM #36

To make more money, they will soon announce bars in pink then black and ones with stripes. Marketing guys will confuse you as much as they can.


I looked beyond the marketing (I don't believe anything a sales person has to say) and after reviewing the data it's apparent that customers are looking for valid company creditentials before they proceed to purchasing. Our own conversion rate is extremely above par however we are in a niche so there isn't no real way to gauge the sales increase.

If anything, it'll pay for itself if someone buys something because of it (vs godaddy)
I've moved on from CS-Cart to WooC******** - If you need anything I can be of little help.

 
  • dragondf
  • Senior Member
  • Members
  • Join Date: 02-Nov 07
  • 211 posts

Posted 29 January 2010 - 05:55 PM #37

To make more money, they will soon announce bars in pink then black and ones with stripes. Marketing guys will confuse you as much as they can.


ahahahahaahhahhhahh

I haven't read it yet.
hahahaahah

Very funny.


I looked beyond the marketing (I don't believe anything a sales person has to say) and after reviewing the data it's apparent that customers are looking for valid company creditentials before they proceed to purchasing.


I think one company that started its works in last month you not haver creditentials neither if they have a ULTRA SUPER PINK BLUE GREEN ssl certificate. I think SSL CERTIFICATE is just ONE THING that a webstore need to have.
About ssl certificate, I believe is to costumers believe that their credict card data will not be get by any cracker during payment process.

But to pay 400$ just to have a SEAL of a BRAND?
So, I want a TOYOTA SSL certificate.

:)
"Tenho-vos dito isto, para que em mim tenhais paz; no mundo tereis aflições, mas tende bom ânimo, eu venci o mundo". João 16:33
--
"I have told you these things, so that in me you may have peace. In this world you will have trouble. But take heart! I have overcome the world". John 16:33
www.companhiadanutricao.com.br

 

Posted 29 January 2010 - 06:02 PM #38

About ssl certificate, I believe is to costumers believe that their credict card data will not be get by any cracker during payment process.

But to pay 400$ just to have a SEAL of a BRAND?
So, I want a TOYOTA SSL certificate.

:)


I paid a bit more than that furthermore I'm not negating the responsibilities of the credit-card company, I just want to save myself the legal paperwork.

Not only that, but I'm 100% certain that it will increase our conversion rate which I hope will lead to hiring someone else to do my job:rolleyes:

Anyway, This is Indy's thread lets keep it as such

</offtopic>
I've moved on from CS-Cart to WooC******** - If you need anything I can be of little help.

 
  • indy0077
  • Senior Member
  • Banned
  • Join Date: 03-Nov 09
  • 1431 posts

Posted 29 January 2010 - 06:08 PM #39

But to pay 400$ just to have a SEAL of a BRAND?

That's relative, but if someone buy a SSL cert for $10 (except RapidSSL) which is self barnded by a hosting company only to save a few cents instead to buy a cert for $20 from a known SSL provider, thats really wrong.
.
CS-Cart Professional €160.00 | CS-Cart Multi-Vendor €625.00 | CS-Cart Hosting | SSL Certificates
.
CS-Cart Optimized Servers *** USA & UK VPS Servers

 
  • dragondf
  • Senior Member
  • Members
  • Join Date: 02-Nov 07
  • 211 posts

Posted 29 January 2010 - 06:26 PM #40

I paid a bit more than that furthermore I'm not negating the responsibilities of the credit-card company, I just want to save myself the legal paperwork.

Not only that, but I'm 100% certain that it will increase our conversion rate which I hope will lead to hiring someone else to do my job:rolleyes:

Anyway, This is Indy's thread lets keep it as such

</offtopic>



I liked this post. People (at least here) are being very participative.

Well, about CONVERSION RATE, I think this is not the UNIQUE thing a costumer will be worried about.

For example:
1st thing I try to find: PRICE. If your prices are not competitive, I will to another company website.

2nd: payment methods

3rd: is this company well known? Where is it locate? Is there something again it in others foruns or something like that?

4th: can I talk to someone in a phone number?

5th: is there anyone that I know that have made a buy from it?

6th: privacy policy
...

...

20th: is there a SSL certificate?
...
30th: is this SSL CERTIFICATE from a very known company?


I have nothing against your idea and your ssl certificate.
But for me, this is just a SEAL, nothing more.


In my case, in Brazil, all these that you are talking about are NOT very well known here. So, I don't believe a costumer will not buy from you just because you are not using a VERY WELL KNOWN ssl certificate "importated from USA".

Like I said before, here in Brazil we do not get the CREDIT CARD NUMBERS form a costumer. Only visa, master, etc.. know about that credit cards, not the webstore.

I was shocked when a person from a bike store said me he had my credit card number. I said: "HOW?"
He said: "I am the boss".

The cracker do not want to know if your are or not the BOSS. He will get all value data from your computer and use it later.

That's relative, but if someone buy a SSL cert for $10 (except RapidSSL) which is self barnded by a hosting company only to save a few cents instead to buy a cert for $20 from a known SSL provider, thats really wrong.



I think like you.


:)
"Tenho-vos dito isto, para que em mim tenhais paz; no mundo tereis aflições, mas tende bom ânimo, eu venci o mundo". João 16:33
--
"I have told you these things, so that in me you may have peace. In this world you will have trouble. But take heart! I have overcome the world". John 16:33
www.companhiadanutricao.com.br