What Are SSL Certificates
SSL Certificates are small data files that digitally bind a cryptographic key to an organization’s details. When installed on a web server, it activates the padlock and the https protocol and allows secure connections from a web server to a browser. Typically, SSL is used to secure data transfer and logins as well as credit card transactions. As of April 2018, Google has announced that sites without an SSL certificate will be penalized with a warning notice that users will see alerting them to your website being unsecured.
For professional practices such as attorneys, dentists, chiropractors, accountants and so forth, SSL Certificates are critical to security as they bind together your website’s domain address, the server the site is hosted on as well as the actual identity of the organization. This prevents information from being stolen during a users interaction with your website, as well as ensures that a hacker or criminal party cannot impersonate your website in order to trick your clients into submitting private information.
As of October 2017, Google, which controls over half of the browser market, started labelling sites without a valid SSL certificate with a non-secure. Google has set a deadline of April 2018 before a full-fledged warning will appear on your site if there is no SSL installed that will look like this.
In addition, attempts to enter information into your forms on your page/s will be labeled as insecure and the user will be notified not to interact with the site with a message similar to this.
This Chrome browser warning essentially will instruct users of your site that they should not trust it – and subsequently should not trust your practice/business.
Installing an SSL on Your Server
Installing an SSL on your server is a three part process that can become complicated in the event of your website drawing from resources that are not secure despite your SSL being in good standing.
These steps are as follows.
- The purchase of a valid SSL Certificate.
- Installation of the certificate on your domain on your server.
- Site audit that all pages and components of your website are now secure.
Point three is where most problems occur with SSL installation as the sites HTML code often calls for resources such as images that are hard linked with a HTTP protocol rather than the new secure HTTPS address call.
NOTE: Google has announced that in September of 2017, the Symantec SSL certificates are no longer going to be accepted as safe . If your current developer installed a Symantec SSL, you will need to remove the certificate and reinstall a correct certificate. https://security.googleblog.com/2017/09/chromes-plan-to-distrust-symantec.html
Senvira Security Certificate Services
We provide expert SSL installation and management services to clients across the world. We understand that for many of our clients, the entire spectrum of website security can be intimidating, and in many cases, their website developer or IT person is not knowledgeable enough on the subject to install and implement the right certificate. There are in fact many different types of certificates that are applicable to each industry and website, and selecting the right protocol and SSL solution is critical to actual protection rather than just visually appearing to be protected.
Risk and Liability to Your Organization
Having no SSL certificate or the incorrect certificate installed can be an extreme liability to your practice or organization. If in the case your site was breached by a hacker, and a client or customer was subsequently attacked due to your website’s neglect, you can become liable for any damages including being named in a class action lawsuit if the data breach was large enough.
In addition, both provincial and state law mandates that you must contact anyone who possibly has had their data stolen or intercepted. This in turn usually ends up as a story on the evening news and can destroy a practice’s reputation literally overnight as they get labeled as an organization that can’t be trusted to protect their user’s private information.
In the case of a lawsuit from a data breach, a website having no SSL protection is essential without a defense as it is a clear indication to a judge that their was no attempt to protect user data.
SSL Management Costs
Senvira can install an SSL certificate and manage its function for you. The cost is variable depending on the level of certificate you require, as well as the time required to ensure your site is functioning correctly after the certificate installation.
It’s important to understand the difference between a service like ours and a standard SSL retail store such as offered by GoDaddy etc. These companies only provide the raw installation of the certificate and do not ensure that your site is functioning correctly after it is installed which can lead to extensive downtime and ongoing problems
Our service provides you an entire turnkey SSL solution that removes all guesswork from the equation. We take the time to assess your industry, your current site, and your security needs. We then ensure the right classification of certificate is installed and functions correctly.
General Pricing by Industry
The following are fee ranges for our SSL installation services. The bottom range represents standard, problematic free installation, while the upper range reflects if you require advanced security for your site and a higher level of protection. For example, if you are having users submit sensitive data via online forms a higher grade of certificate and protection protocol should be implemented than a practice only collecting basic form information used for a contact form.
- Health Practices – $500 to $2500
- Legal Practices – $750 to $5000
- Professional Practices $500 to$2500
- Municipal and Government Sites $750 to $5000
- eCommerce Platforms $500 to $5000
Please contact our SSL team at firstname.lastname@example.org to book a free consultation regarding your SSL security needs or call us at 780-800-4849