• We supply and installed SSL certificates

    Whether you using our servers or not, we have top end certificates at ridiculously cheap prices.

  • Get your website on https

    Even if your server host is with a different provider, we can help you getting your website binded to a https connection

  • Our customers get free SSLs

    If you have a website with us, SSL certificates are included for free!

  • High security

    Our RSA 4096 bit encryption is suitable for any industry including government and military use.

  • Flexible

    Doesn’t matter what kind of server you’re using.  We regularly install SSLs on clients cPanel’s, Synology servers and IIS servers.

What is an SSL certificate?

An SSL (Secure Sockets Layer) certificate is a type of digital certificate that is used to create a secure connection between a web server and the client user.  This secure connection ensures that any data that is communicated is encrypted.

It encrypts the connections between you and the places you visit on the internet so that it becomes almost impossible for any ‘middle man’ to see the data being exchanged.  They can still see that traffic is being exchanged, but the data is unreadable to them.

Most websites, and many other kinds of internet traffic such as emails are being now encrypted by default, where previously it was only a few websites such as banks, where encryption was deemed necessary.

When a website has an SSL certificate, it is indicated by a padlock icon in the web address bar and the “https” protocol in the URL.

SSL today doesn’t actually exist!  as after version 1.3 it was renamed to TLS (Transport Layer Security), however its the same technology, so the terms are interchangeable.

  • SSL 1.0 – never publicly released due to security issues
  • SSL 3.0 – released in 1996. Deprecated in 2015 (protocol RFC 6176)
  • SSL 2.0 – released in 1995. Deprecated in 2011 (protocol RFC 7568)
  • TLS 1.0 – released in 1999 as an upgrade to SSL 3.0, Deprecated in 2021 (protocol RFC 8996)
  • TLS 1.1 – released in 2006. Deprecated in 2021 (protocol RFC 8996)
  • TLS 1.2 – released in 2008
  • TLS 1.3 – released in 2018

*All versions of SSL have been found vulnerable, and they all have been deprecated, and TLS 1.0 & 1.0 have also been phased out by Microsoft and Apple.

All these certificates using the X.509 protocol originally given in RFC 1422, and later in RFC 5280

How does it encrypt data?

The SSL handshake

  • When connecting to a website, your devices first asks the server to send you its SSL certificate as to confirm its identify
  • You device then checks if the certificate is valid
  • The server then sends a digitally signed acknowledgment to create the SSL encrypted channel

The HTTP protocol which websites use to communicate, was upgraded to the HTTPS protocol as to accommodate the SSL encrypted data.  These data packages are wrapped inside a TCP data package, which is then wrapped inside an IP transport layer data packet.

Certificate filename extensions

There are several commonly used filename extensions for SSL X.509 certificates.

  • .pem – (Privacy-enhanced Electronic Mail) Base64 encoded DER certificate, enclosed between —–BEGIN CERTIFICATE—– and —–END CERTIFICATE—–
  • .cer.crt.der – usually in binary DER form, but Base64-encoded certificates are common too (see .pem above)
  • .p7b.p7c – PKCS#7 SignedData structure without data, just certificate(s) or CRL(s)
  • .p12 – PKCS#12, may contain certificate(s) (public) and private keys (password protected)
  • .pfx – PFX, predecessor of PKCS#12 (usually contains data in PKCS#12 format, e.g., with PFX files generated in IIS)

PKCS#7 is a standard for signing or encrypting (officially called “enveloping”) data. Since the certificate is needed to verify signed data, it is possible to include them in the SignedData structure. A .P7C file is a degenerated SignedData structure, without any data to sign

PKCS#12 evolved from the personal information exchange (PFX) standard and is used to exchange public and private objects in a single file.

We sell and install SSL certificates

Note that all our customers gets a free SSL for every website they have with us.  But if your looking for real piece of mind, here’s our yearly certificates that can be purchased for any number of applications.  These different types of certificates dont give any less or stronger encryption, it gives a higher confidence in identify. These can all be used with RSA 4096 bit military/government grade encryption.

Extended Validation certificates (EV SSL)

To set up an EV SSL certificate, the owner must go through an identity verification process to confirm they’re organisation legally own exclusive rights to the domain.  This is the highest-ranking and most expensive type of SSL certificate, so tends to be used for high profile websites which collect data and involve online payments. When installed, this SSL certificate displays the padlock, HTTPS, name of the business, and the country on the browser address bar. Displaying the website owner’s information in the address bar helps distinguish the site from malicious sites.

Organisation Validated certificates (OV SSL)

This version of SSL certificate has a similar assurance similar level to the EV SSL certificate; the website owner needs to complete a substantial validation process. This type of certificate also displays the website owner’s information in the address bar to distinguish from malicious sites. OV SSL certificates tend to be the second most expensive (after EV SSLs), and their primary purpose is to encrypt the user’s sensitive information during transactions.

Wildcard SSL certificates

Wildcard SSL certificates allow you to secure a base domain and unlimited sub-domains on a single certificate. If you have multiple sub-domains to secure, then a Wildcard SSL certificate purchase can be cheaper than buying individual SSL certificates. The asterisk represents any valid sub-domains that have the same base domain.

Multi-Domain SSL Certificate (MDC)

A Multi-Domain certificate can be used to secure many domains and/or sub-domain names. This includes the combination of completely unique domains and sub-domains with different TLDs (Top-Level Domains) except for local/internal ones.

Multi-Domain certificates do not support sub-domains by default. If you need to secure both www.example.com and example.com with one Multi-Domain certificate, then both hostnames should be specified when obtaining the certificate.

Any questions? Yes
Sectigo – PositiveSSL DV – 1 Year $40 AU per year
Sectigo – SectigoSSL DV – 1 Year $75 AU per year
Sectigo – InstantSSL OV – 1 Year $95 AU per year
Sectigo – SectigoSSL OV Pro – 1 Year $110 AU per year
Sectigo – SectigoSSL EV – 1 Year $199 AU per year
Sectigo – SectigoSSL Wildcard – 1 Year $249 AU per year
Sectigo – InstantSSL OV Wildcard – 1 Year $299 AU per year
Sectigo – PositiveSSL Multi-Domain 5 – 1 Year $159 AU per year
Sectigo – PositiveSSL Multi-Domain 10 – 1 Year $239 AU per year
Sectigo – PositiveSSL Multi-Domain 20 – 1 Year $439 AU per year
Dedicated IP (sometimes required with an SSL, depending on application) $53 AU per year
If the SSL requires a manually installation on a remote server $75 AU per install

Sectigo® brand is the market leader in SSL / TLS certificates, DevOps, IoT, enterprise-grade PKI management, and multi-layered web security. 100,000,000 certificates issued to 800,000 customers including 40% of the Fortune 1000 Companies.