Types of Certificates
Updated on October 20, 2022, by Xcitium
What Are the Different Types of SSL Certificates?
Types of SSL Certificates at a Glance
| Certificate Type | Purpose | Validation Level |
|---|---|---|
| Domain Validation (DV) | Basic website encryption | Low |
| Organization Validation (OV) | Business verification and encryption | Medium |
| Extended Validation (EV) | Highest trust and identity verification | High |
| Single Domain SSL | Protects one domain | Varies |
| Wildcard SSL | Protects one domain and all subdomains | Varies |
| Multi-Domain SSL (SAN) | Protects multiple domains | Varies |
Extended Validation (EV) SSL Certificates
For e-commerce applications and sites where sensitive information is exchanged, EV SSL certificates deliver the highest level of trust to website visitors. With EV SSL certificates, a visitor’s address bar will turn green and display the organization’s name and location confirming the site’s identity along with the Certificate Authority (CA) doing the verification according to standardized industry guidelines established by the CA/Browser Forum.
Multi-Domain EV SSL Certificates
For enterprises and organizations looking to cost-effectively secure multiple websites with EV SSL, the highest levels of security. Multi-domain certificates expand the value of EV by allowing businesses to secure up to 100 distinct domains on a single certificate – greatly simplifying SSL management processes and delivering substantial cost savings versus individual EV certificate purchases.
Wildcard SSL Certificates
For organizations hosting a single domain name but with different subdomains (e.g., secure Xcitium.com, www.Xcitium.com, accounts.comodo.com), the Wildcard Certificate is cost effective and efficient means of securing all subdomains without the need to manage multiple certificates.
Unified Communication Certificates (UCC)
For Microsoft Exchange 2010 and Office Communications Server 2007, a single UCC/SAN Certificate can cover many different domains. Built for these Microsoft environments, UCC simplifies the process of configuring SSL security and provide SSL support which traditional or Wildcard SSL certificates cannot do.
AMT SSL Certificates
For use with PCs based on Intel® vPro™ technology based computers to provide secure, remote system management. Intel® has embedded Xcitium’s public root certificate into the firmware of the Intel® vPro™ platform. With an AMT certificate on their setup and configuration server, IT departments can now create a trusted and secure connection to their user’s machines.
General Purpose SSL Certificates
For securing web sites, these standard SSL certificates provide SSL encryption plus traditional validation/vetting. These organizationally validated (OV) certificates include an organization’s name and location on the certificate.
Personal Authentification/Email Certificates
Xcitium Personal Authentication Certificates (CPACs) allow you to add security to your emails and documents and help you authenticate yourself to online services. For businesses and organizations requiring assurance that email cannot be stolen or modified in transit, Xcitium E-mail Certificates secure email by digitally signing and/or encrypting it. It allows users to use the digitally sign and encrypt features built into their personal email client such as Microsoft Outlook or other S/MIME compliant software.
Xcitium Secure E-Mail software works with your email client to automatically sign and encrypt outgoing email, as well as eliminate the complexity of the certificate exchange procedure among users.
Mobile Certificates
Xcitium Mobile Certificates are the fastest, most secure method for securing bring your own device (BYOD) connectivity without the cost and complexity of installing agent software on employee mobile devices. Deploy and manage mobile certificates with CCM. CCM provides for the rapid deployment of BYOD security, trust and regulatory compliance. By taking a holistic approach to mobile certificate management, the Xcitium system is able to easily audit provision, track, purchase, and deploy mobile certificates – all from this single, easy-to-use console.
Next Steps
For enterprise pricing on our certificates or a live demonstration of CCM please contact us.
Download our white paper on CCM.
If you are interested in purchasing our certificates at retail pricing, please visit EnterpriseSSL.com.
Types of SSL Certificates by Validation Level
1. Domain Validation (DV) SSL Certificates
Domain Validation certificates verify that the applicant owns the domain. They are the fastest and most affordable SSL certificates and are commonly used for blogs, personal websites, and small business sites.
Best For
- Blogs
- Informational websites
- Small business websites
- Startups
2. Organization Validation (OV) SSL Certificates
Organization Validation certificates verify both domain ownership and the legitimacy of the organization requesting the certificate. They provide a higher level of trust than DV certificates.
Best For
- Corporate websites
- Business portals
- Customer-facing applications
- Professional services firms
3. Extended Validation (EV) SSL Certificates
Extended Validation certificates require the most rigorous verification process. They provide the highest level of trust and are commonly used by organizations handling sensitive transactions.
Best For
- Financial institutions
- E-commerce websites
- Healthcare organizations
- Government agencies
Types of SSL Certificates by Domain Coverage
Single Domain SSL Certificates
A Single Domain SSL certificate secures one fully qualified domain name, such as example.com.
Example
- example.com
Wildcard SSL Certificates
Wildcard SSL certificates secure a primary domain and all first-level subdomains under that domain.
Example
- example.com
- mail.example.com
- support.example.com
Multi-Domain SSL Certificates (SAN Certificates)
Multi-Domain SSL certificates secure multiple domains using a single certificate.
Example
- example.com
- example.net
- example.org
DV vs OV vs EV SSL Certificates
| Feature | DV SSL | OV SSL | EV SSL |
| Domain Ownership Verification | Yes | Yes | Yes |
| Organization Verification | No | Yes | Yes |
| Extended Business Validation | No | No | Yes |
| Issuance Speed | Minutes | 1–3 Days | Several Days |
| Trust Level | Basic | High | Highest |
| Recommended For | Blogs & Small Sites | Businesses | Enterprises & E-commerce |
How to Choose the Right SSL Certificate
When selecting an SSL certificate, consider:
- Website purpose
- Business verification requirements
- Number of domains to secure
- Compliance obligations
- Customer trust expectations
Recommended Certificate Types
| Website Type | Recommended Certificate |
| Personal Blog | DV SSL |
| Small Business Website | DV or OV SSL |
| Corporate Website | OV SSL |
| E-commerce Website | EV SSL |
| Multi-Brand Organization | Multi-Domain SSL |
| Organizations with Many Subdomains | Wildcard SSL |
Benefits of SSL Certificates
SSL certificates provide several important benefits:
- Encrypt sensitive data
- Protect login credentials
- Improve website trust
- Enhance customer confidence
- Support compliance requirements
- Improve SEO rankings
- Prevent data interception attacks
FAQ
What are the main types of SSL certificates?
The primary SSL certificate types are Domain Validation (DV), Organization Validation (OV), and Extended Validation (EV). Certificates can also be categorized as Single Domain, Wildcard, and Multi-Domain SSL certificates.
Which SSL certificate is best?
The best SSL certificate depends on your needs. DV certificates are suitable for basic websites, OV certificates are ideal for businesses, and EV certificates provide the highest level of trust for organizations handling sensitive transactions.
What is the difference between DV, OV, and EV certificates?
DV certificates verify domain ownership, OV certificates verify both domain ownership and business legitimacy, and EV certificates require extensive organizational validation and provide the highest trust level.
What is a Wildcard SSL certificate?
A Wildcard SSL certificate secures a primary domain and all first-level subdomains using a single certificate.
