Digicert FAQ

Transport Layer Security (TLS) certificates—most commonly known as SSL, or digital certificates— are the foundation of a safe and secure internet. TLS/SSL certificates secure internet connections by encrypting data sent between your browser, the website you’re visiting, and the website server. They ensure that data is transmitted privately and without modifications, loss or theft.

TLS/SSL certificates are the standard by all major web browsers to ensure a safer internet experience for users. Websites secured by TLS/SSL certificates are more trusted by internet users because they encrypt and protect private information transferred to and from their website. They also represent, or certify, your website’s brand identity. In that sense, TLS/SSL certificates are both an identity protection measure for online brands, and a security measure for companies transmitting private data online.

TLS/SSL certificates establish an encrypted connection between a website/server and a browser with what’s known as an “SSL handshake.” For visitors to your website, the process is invisible—and instantaneous.

Authentication: For every new session a user begins on your website, their browser and your server exchange and validate each other’s TLS/SSL certificates.

Encryption: Your server shares its public key with the browser, which the browser then uses to create and encrypt a pre-master key. This is called the key exchange.

Decryption: The server decrypts the pre-master key with its private key, establishing a secure, encrypted connection used for the duration of the session.

Digital trust is a modern combination of encryption, security and identity solutions designed to extend protection across every virtual interaction and build a bridge of trust between the digital and physical worlds. Essentially it's the unification of TLS/SSL, IoT and PKI security through a centrally managed platform.

Yes DigiCert TLS/SSL certificates are issued under one of the longest-lived and most widely supported roots in the industry. DigiCert TLS/SSL certificates deliver the highest root ubiquity on 99.9% of web browsers, major operating systems and mobile devices. If you have questions about the compatibility of older devices, please contact our support team.

Browsers: Just as websites are designed to be device and browser agnostic, TLS/SSL is supported by all major web browsers.

Servers: A TLS/SSL certificate can be supported by any server. It’s up to the browser to determine the security of a server during the handshake process.

Email: Most cloud-based email providers use TLS/SSL encryption. Organizations can also install an TLS/SSL certificate to protect private email servers.

Yes, most websites that conduct business on the internet require a digital TLS/SSL certificate to encrypt and secure private data that is transmitted. TLS/SSL certificates protect your business’ and your customers private information. In addition, without a certificate most major browsers will display a “Not Secure” message in the address bar. Having an unsecure website could prevent customers from completing purchases or doing business with your company. If you want to signal the highest level of security and brand authenticity to customers, we recommend using an EV or OV certificate.

Any website without a secure TLS/SSL certificate will show a “Not Secure” message in the browser address bar. The only way to fix a “Not Secure” message on your website is by installing a TLS/SSL certificate. You can do that by purchasing a certificate from DigiCert and following the installation steps in CertCentral.

DigiCert can be deployed quickly and efficiently, typically within hours. With DigiCert ONE, businesses can seamlessly manage their certificates and deploy security solutions across their environments, enabling faster time to security. The process is streamlined to help organizations minimize downtime and improve operational efficiency.

Unlike internal PKI, DigiCert offers a centralized solution that eliminates the complexity of managing infrastructure and hardware. DigiCert ONE simplifies certificate management and increases scalability, providing automated workflows and visibility across the organization. It’s an easier, more cost-effective solution compared to maintaining an internal PKI setup.

When certificates expire, DigiCert automatically sends reminders and enables easy renewal through the DigiCert ONE platform. Expired certificates can cause disruptions in services, but DigiCert minimizes this risk by offering automated certificate lifecycle management, ensuring businesses stay compliant and secure without manual intervention.

Yes, DigiCert is fully compliant with the highest industry standards, making it suitable for regulated industries such as finance, healthcare, and government. DigiCert offers robust security features, including advanced encryption, audit trails, and support for regulatory compliance requirements, ensuring businesses remain compliant with standards like HIPAA, GDPR, and PCI DSS.