- Who is WEBYSSL?
- Who is WEBY Systems?
- Why have a Separate Website?
- Do You have a Reseller Plan?
- How do I pay for my SSL Certificate?
- I am confused by all the Jargon what does it mean?
- What is SSL?
- What is a RapidSSL Certificate?
- What is a Single Root SSL certificate?
- Why is stability important for SSL certificates?
- What do you consider low volume, low transaction?
- What browser versions are compatible with RapidSSL and QuickSSL Premium Certificates?
- Why are you providing RapidSSL and QuickSSL Premium Certificates?
- How long are your SSL certificates valid for?
- How do I renew my SSL Certificate?
- How long does it take to issue my Certificate?
- Is there a limit to the number of certificates I can order?
- What is browser ubiquity or browser recognition?
- Can I see which Certification Authorities have their own Trusted CA root present in browsers?
- Can I secure multiple subdomains with a single Certificate?
- What validation processes does WEBYSSL.com use?
- What type of customer service do you offer?
- What is the warranty?
- If I move hosts can I move my SSL Certificate?
WEBY Systems to encompass out SSL Certificate offerings, it is not a separate company. Full details about WEBY Systems can be found on our website. Top WEBY Systems is a privately held business based in Australia, we provide services to the web hosting industry. Full details about WEBY Systems can be found on our website. Top
All management is done through this site from ordering, payment and tracking of new orders to renewals of existing certificates. You can log in to your account and see what certificates you have ordered, retrieve details (including CSR and Certificate keys if you misplace the information or have to move the domain to a different server). Renewal emails are automatically generated when your certificate is up for renewal and are sent to the Technical contact.Top
Our standard discount plan works on the basis when you reach the threshold number of certificates your pricing band will change and all certificates after that will be available at the discounted price. When you login to your account you will be presented with your current Buy price. For more details on the discount pricing scheme please see the Discount Pricing Page.Top
For Credit Card only payments (VISA and Mastercard only) you may purchase through PayPal. All Credit Card information is handled securely by PayPal we just get a confirmation you have paid and the money is deposited into our account. You do not need to have an account with PayPal to use their service.
Australian customers can also purchase using Direct Deposit, if you use online banking then you can transfer directly to our account. You can also pay over the counter at any Branch of the National Australia Bank. Just select Direct Deposit and when your order is submitted we will provide you with our bank details so that you can make payment. Please note we will have to confirm the funds have been transfered before we process your order, this can take up to 48 Hours depending on which bank you use.
Payments for Australian Customers are in Australian Dollars Only, for the rest of the world you default to US Dollars but you may elect to pay in Australian Dollars when you open your account with us.
If you wish to make a manual payment either because your initial payment was rejected or you exited before completing the payment then you can go to the Manual Payment Page. Manual Payments are only available if you are paying in AUD by Mastercard or VISA, Or in USD.Top
Some of the terms used when describing SSL certificates (SSL included) can be a bit daunting, to make things a bit easier we have included a Jargon Buster to help explain some of the langauge around SSL certificates.
You can access it from the link above or through the Help Center page.
The SSL (and TLS) protocol is the Web standard for encrypting communications between users and SSL (secure sockets layer) e-commerce sites. Data sent via an SSL connection is protected by encryption, a mechanism that prevents eavesdropping and tampering with any transmitted data. SSL provides businesses and consumers with the confidence that private data sent to a Web site, such as credit card numbers, are kept confidential. Web server certificates (also known as secure server certificates or SSL certificates) are required to initialize an SSL session.
Customers know when they have an SSL session with a website when their browser displays the little gold padlock and the address bar begins with a https rather than http. SSL certificates can be used on webservers for Internet security and mailservers such as imap, pop3 and smtp for mail collection / sending security.Top stable and far easier to install than a chained root install certificate.
RapidSSL lowers the barrier of entry for companies that want single root SSL security by providing immediately issued certificates at the lowest cost available.Top
Most SSL certificates are issued by CAs who own and use their own Trusted Root CA certificates, such as those issued by GeoTrust and RapidSSL.com. As GeoTrust and RapidSSL.com is known to browser vendors as a trusted issuing authority, its Trusted Root CA certificate has already been added to all popular browsers, and hence is already trusted. These SSL certificates are known as "single root" SSL certificates. RapidSSL.com, a subsidiary of GeoTrust, owns the Equifax Secure eBusiness CA-1 root used to issue its certificates.
Some Certification Authorities, like Comodo, do not have a Trusted Root CA certificate present in browsers, therefore they need a "chained root" in order for their certificates to be trusted - essentially a CA with a Trusted Root CA certificate issues a "chained" certificate which "inherits" the browser recognition of the Trusted Root CA. These SSL certificates are known as "chained root" SSL certificates.
Installation of chained root certificates are more complex and some web servers are not compatible with chained root certificates.
For a Certification Authority to have its own Trusted Root CA certificate already present in browsers is a clear sign that they are long-time, stable and credible organizations who have long term relationships with the browser vendors (such as Microsoft and Netscape) for the inclusion of their Trusted Root CA certificates. For this reason, such CAs are seen as being considerably more credible and stable than chained root certificate providers who do not have a direct relationship with the browser vendors.
You can view the Certification Authorities who have their own root certificates by viewing the list in your browser. Click here for instructions.
Chained root certificates require additional effort to install as the webserver must also have the chained root installed. This is not necessary for single root certificates.Top
Some SSL certificate providers cannot offer this stability. For example, Comodo InstantSSL do not own their own trusted root, which means that they can only offer chained root certificates chained to a trusted root certificate that they do not own. They rely on the trusted root certificate owner to allow them to issue certificates and have no control over what the owner of the certificate does with the certificate - as has recently been shown when Baltimore has decided to sell its root certificate. The only way to offer a stable chained root product is to own the root being used to issue the chained root certificates.Top
It is all about customer confidence. Whilst RapidSSL technology is production grade, only you can really determine whether your customers confidence will improve significantly if you purchase an established brand like GeoTrust.
As a guide, typical customer transaction value is sub 50 USD, and volumes of transactions are less than 50 per week.
Note: The 50 per week example figure is simply a commercial guide and not a technical restriction. Technically the RapidSSL certificate will not be restricted from conducting more transactions than 50 - they are still industry standard 128 bit SSL certificates. However it is our opinion that sites conducting more than 50 transactions will require a Professional Level SSL certificate due to the increased likelihood that the website's customers will expect SSL from a highly credible and established SSL provider and well known internationally accepted SSL brand.Top Top Top
QuickSSL Premium certificates are valid for either 1, 2 or 3 years.
When your SSL certificate is about to expire we will contact you to advise you. We send reminder notices at 90, 60, 30, 14 and 7 days prior to the expiration of the certificate and on the day of expiry.Top
You may renew your certificate up to 90 days prior to expiry, the time left on your certificate will be rolled over to the new certificate.
To renew your certificate you must generate a new CSR for the site, to make ordering easier if you look up the details of the certificate in "My Account" you will see the list of certificates you currently have including the time until the expire. There is a separate list for those certificates that will expire in the next 90 days, when you click on the details and scroll to the bottom there is a button that will copy all the current details over to the order page. You will only need to paste in the new CSR and confirm the details.Top
RapidSSL and QuickSSL Premium Certificates are issued same day, generally within 2 hours of your request being submitted. If you have not received an Authorisation email at the address you specified within 12 Hours of submitting an order please advise the Sales contact email address email@example.com so that we can follow up your order.
When you recieve the Authorisation email and approve the issuing of the certificate there may be an additional delay in processing your order if the automatic system can not verify your details with your domain registrar. This additional dealy has come about due to some domain registrars blocking our access to their lookup systems, if the system can not perform the lookup the order will be held for manual review. Manual reviews are only completed during normal business hours by the GeoTrust staff.
The following registrars are known to be blocking automatic lookups: Godaddy (godaddy.com), Network Solutions (networksolutions.com). If your domain is registered through one of thes domain Registrars then the order may be held for manual review.
Ubiquity is however not the only consideration in deciding whether one SSL certificate is better than another. Many companies running high transaction volume web sites need to maximize customer confidence and therefore buy certificates from well known, long time security vendors and mostly use the major players e.g. GeoTrust and Verisign who are all WebTrust compliant.
If you have a low volume web site and you decide that your customers confidence is not effected at all by the brand behind the SSL certificate, or the volume of customers that would have an issue are insignificant in number, then RapidSSL certificates are ideal.Top
GeoTrust owns the Equifax root (Equifax Digital Certificate services became GeoTrust in 2001).
RapidSSL.com's RapidSSL product owns its own root. RapidSSL.com uses a different Equifax root (Equifax Secure eBusiness CA-1).Top Top
SSL certificates work to prevent this through ensuring that www.abc.com is, in fact, ABC Co. In the “real world”, we use identification procedures like photo ids, telephone calls and papers of incorporation to know with whom we’re dealing. If products or services are defective, buyers can seek recourse. In the “online world”, companies wishing to use SSL certificates must prove to the certificate authority that they have the right to present themselves online as ABC Co.
This is done through a variety of means in different SSL products. For simplicity’s sake, consider the method started and championed by Verisign, as the ‘traditional’ model. The process involves certificate petitioners faxing in their articles of incorporation, and then waiting several days to be granted a certificate to do business online under that name. There is a fair amount of overhead related to this task, as these credentials are examined and reviewed, and full-service products in this arena can cost hundreds of dollars.
There are newer, lower-cost alternatives in which certificates are issued more quickly. These certificates verify that the certificate holder is the owner of that domain, ensuring customers that URL “owners” are who they claim to be.
There are also other validation options, like two-way, real-time telephony. Certificate applicants are required to provide telephone numbers, and certificate authorities call to verify basic information, yet another way to seek recourse in the event of problems.
As part of the provisioning process with RapidSSL and QuickSSL Premium Certificates, your business will be registered with ChoicePoint* and assigned a ChoicePoint Unique Identifier (CUI) — equivalent to a DUNS number. The CUI provides a corporate profile to your Internet users through information imbedded in your certificate. The business registration profile initially contains the basic self-reported information from your CSR — your Domain, Company Name, Division, Country, State and City. ChoicePoint will allow relying parties to view and purchase additional data about your company. With the ChoicePoint Unique Identifier, industry-recognized domain control authentication, and two-factor telephony authentication, both of these products add further validation to forge the strongest real-time authentication process on the market today.
*ChoicePoint is the nation's leading provider of identification and credential verification services. For more info about Choicepoint go to www.choicepoint.com.Top Top
It is worth noting that other SSL Providers use warranty as a means of adding perceived value to their offerings, as such will offer the same certificate with higher warranties and then charge more for the certificate! We want to make it clear that warranty has not been collected on any SSL Certificate, ever! The inclusion of a $10,000 warranty on RapidSSL and QuickSSL Premium Certificates makes RapidSSL.com the lowest cost provider of highly trusted, fully warrantied SSL certificates!Top
Installation is the same as for a new install just use the existing .crt and .key data. Guides area available in the Help Centre. Top