December 28th, 2009

Advantages of LuxSci/Comodo TLS Certificates over Go Daddy

We are often asked by customers  why they should pay more for an SSL certificate from LuxSci/Comodo instead of purchasing from a third party provider like GoDaddy.  I.e., what justifies the added expense?

There are two key considerations in choosing Comodo SSL certificate from LuxSci:

  1. The recognition of an SSL certificate from Comodo
  2. A web site seal from Comodo that you can place on your site
  3. The benefit of LuxSci managing the order process, installation and subsequent SSL renewals.

The recognition of an SSL certificate from Comodo

There are many advantages to using SSL certificates from Comodo.

  • Highly Credible Online Security For Professional Level Websites That’s Fast, Reliable and Cost-Effective – Comodo is a highly respected and established Web Trust compliant security organization.  If your website has high transaction volumes, or if you are a hosting provider with a Service Level Agreement (SLA), then Comodo can provide highly trusted professional and enterprise-class certificates.
  • Highly trusted and highly credible SSL Certificates – Comodo is the largest Certification Authority in the world.
  • Comodo products are most compatible with Mobile devices with high ubiquity levels.
  • Compatible with 99.9%+ of all browsers and web servers
  • Site Seals – Comodo site seals are an effective way to make sure your customers know your site has the stamp of approval from a leading global Certificate Authority for secure e-business transactions. Their patented smart seal technology provides fast, reliable and user-friendly web site identity authentication, and instant proof to your customers that your site can be trusted.
  • Comodo Trust Seals are dynamically-generated when someone accesses your site, and display a live time and date stamp and/or your company name. Users can click on a site seal to display additional verification information.  Like Comodo SSL Certificates, these enhance your customer’s confidence with the prestige of the Internationally recognized Comodo brand name.

The benefit of LuxSci managing the entire process

While you can provide LuxSci with your own SSL certificate after you purchase it from a third party provider, we recommend that LuxSci purchase your SSL certificate to ensure the quickest and easiest setup experience:

  • We will purchase a TLS certificate from our partner Comodo for you.
  • We will take care of gathering all needed information from you and will coordinate with Comodo.
  • We will make sure that the certificate does not expire on you from year-to-year by tracking the certificate and coordinating renewals with you.
  • Your certificate will:
    • Use 2048-bit keys
    • Support 128-bit and 256-bit encryption
    • Have the highest degree of browser compatibility available
    • Be very well trusted by your end users as it will be issued by Comodo
  • We will bill you for the certificate — so you pay us for your certificate as part of your normal LuxSci invoice.
  • You have a single point of contact for support and billing for your services — LuxSci.
  • Certificate ordering, renewal, and maintenance will be taken care of by LuxSci.

What about Go Daddy?  They are “so inexpensive!”

  • Trust? Most people likely associate Go Daddy with their recent string of sexually-explicit SuperBowl commercials. Is this the first thing you want your customers thinking of when dealing with trusted online security?
  • Validation? The majority of GoDaddy’s certificates are domain-validated. They only validate that the domain is registered by performing a WHOIS lookup. If it is, the certificate is automatically sent to the email address listed for the domain. (I.e. this is not very secure)
  • The bulk of Comodo products that LuxSci sells are organization-validated products where they perform a full verification of your business, the ownership of your domain, and your authority to apply for the certificate. Their authentication procedures provide the highest level of trust in the industry (next to EV). Go Daddy’s do not..
  • Go Daddy’s certificates require an intermediate certificate to be installed for their use. This is because Go Daddy is down the food chain from upper level, more trusted certificate vendors. The validity of all Go Daddy certificates depends on this chain of trust remaining in place and all dependent business relationships remaining unchanged!
  • Go Daddy’s core business is as a domain registrar and offers SSL as an add-on. SSL has always been a core business of Comodo and will remain so. SSL will get less attention at GoDaddy.

Consider the following when providing your own SSL certificate:

  • You have to order the certificate yourself.
  • You are responsible for ensuring that your certificate does not expire and you must take the initiative for renewing it.
  • If there are any issues with your SSL certificate, you must deal with the support from your third party provider yourself.

3 Responses to “Advantages of LuxSci/Comodo TLS Certificates over Go Daddy”

  1. Extended Validation (EV) SSL Certificates | LuxSci FYI Says:

    […] SSL Certificates are issued by an Certificate Authority (CA) such as Thawte after the CA performs some basic standard validation on the identity of the certificate request to […]

  2. Scmeeven Says:

    That’s interesting about the stricter domain validation process of Thawte.

    >>because they are not signing your certificate directly with that trust root.
    I recollect reading somewhere that NOT signing the certificate directly with the original trust root is actually more secure than doing so because it prevents the original root from being compromised, ever.

    Comodo swears by this. Their entire range of certs (even EV SSL certs) require intermediate certs. In fact, I just had it confirmed by the Comodo partner support person that their only reason for this is a policy decision never to sign any cert with the original trust root and that even Verisign had changed its policy as of last year.

  3. Jim Williams Says:

    I’ve seen the “stricter domain validation” argument several places.

    The real question is this — does anyone really care? How many consumers bother to click through to see where your SSL cert came from? How many consumers will even recognize the CA’s?

    I suspect very few on both counts.

    Does anyone have any data to the contrary?

Leave a Comment

You must be connected or logged in to post a comment. This is to reduce spam comments.

If you have not previously commented, you can connect using existing social media account, or register with a new username and password.