Why Invalid SSL Certificates Hurt Business

authentication encryption expired https invalid password privacy secure sockets layer security ssl

November 11th, 2013 By:

SSL or Secure Sockets Layer is an encryption technology that can make sure a user’s connection to a website is secure. When a website is secure, it will use the HTTPS protocol rather than HTTP, and the user’s browser will verify that the certificate authority is trusted and authentic. Not all websites need SSL. If your business uses its website for information purposes only or to link to/embed social media content, SSL may be superfluous. If however, you are collecting user data and/or initiating financial transactions, SSL is necessary.

When SSL works correctly, it provides users with an added layer of security beyond simple password authentication, and it also helps them trust your website, which boosts your company’s reputation. When SSL does not work correctly, it can have the opposite effect, causing some users to literally leave your site altogether.

With growing concerns about privacy on the web, encryption may be more important to users than ever. An expired or unsigned SSL certificate can lead to mistrust on the part of the user, especially since some browsers will stop a user in their tracks when a certificate is suspicious. No longer do they just receive a popup warning. Google Chrome, for example, will display a full-page warning and may prevent the user from viewing the site at all without several attempts to bypass it.

Imagine a customer coming to your site to spend a lot of money but then receiving such a warning. Some will simply walk away and find another store. Therefore, it is imperative that you make sure your SSL is authentic, works for all browsers and is updated when necessary.


SPONSOR SHOWCASE
Corero Network Security

* Real-time DDoS protection for you and your customers
* Purpose built DDoS protection appliance deployed at the Internet edge
* On-premises technology is designed to handle volumetric network-based DDoS attacks or floods, reflective and amplified spoof attacks, like DNS and NTP attacks, as well as application layer attacks - such as slow loris, slow read etc
* Unique, slim-line appliance family delivers 10 Gbps full-duplex performance in a 1/4 wide, 1 RU form factor, enabling Hosting providers to deploy a combination of SmartWall TDS appliances to deliver the performance, connectivity and security required
* Providers are now enabled to offer creative new offerings, such as DDoS and cyber threat protection, enhanced security SLAs as well as visibility and reporting through an analytics portal that can be leveraged as a premium service offering