Content
SSL is used to encrypt connections for HTTP. The data from the server and the client is therefore sent securely and the user is assured that it will not be intercepted by a third party. If a trusted certificate is used, the web server is authenticated at the same time - the user is therefore connected to the entity with which they wanted to communicate.
On a shared webhosting we run the service through the so-called SNI (
Server Name Indication). It allows different certificates to run on one IP address and port, the browser displays the address in the standard form
https://www.domain.cz. The SNI extension is supported by all current web browsers (this method of secure connection does not work, for example, in the Internet Explorer + Windows XP combination).
Certificates securing an encrypted connection to the server can be issued as follows:
- signed by a trusted authority Actalis S.p.a. - if the conditions are met, the DV SSL service is provided free of charge with the webhosting;
- signed by a Let's Encrypt trusted authority - only the SSL service is paid for under this certificate;
- signed by an internationally recognized authority (QuickSSL, RapidSSL) - here it is necessary to pay both for the certificate and for SSL itself;
QuickSSL is useful for securing encrypted transactions between a site visitor and a server. The QuickSSL certificate does not provide the identity of the website operator, it only provides domain information. The QuickSSL certificate is fully trusted in all common web browsers from IE 5.01+, Netscape 4.7+ and Mozilla 1+ to the present and is also fully trusted in all new modern browsers, including mobile devices such as SmartPhone etc..
RapidSSL is a 128/256 bit certificate supported by the vast majority of current web browsers. It also has the advantage of easy installation. It enables the security of simple e-shops and business transactions at a low cost.
RapidSSL Wildcard is a 128/256 bit SHA-2 certificate for securing all subdomains. It has the advantage of support in the vast majority of modern web browsers along with easy installation. It enables the security of larger systems with multiple subdomains at a low cost.
Let's Encrypt is an Internet Certificate Authority, supported by companies such as Mozilla Foundation, Akamai, Cisco Systems and Chrome. It is an automated service that provides a trusted certificate to the requester based on simple authentication. Let's Encrypt certificates are supported for all FORPSI shared web hosting options. Issuance and automatic renewal of these certificates is free of charge, for reliable functionality it is only necessary to ensure permanent routing of the secure domain to the FORPSI webserver.
It is a wildcard certificate of the "Domain Validated" type, issued by the Italian certification authority Actalis S.p.a. The certificate can be activated on all established subdomains of the main domain for a given webhosting. It is not possible to export the private key, the certificate can only be used on FORPSI shared web hosting. The installation of this certificate is automated and does not require an additional
SSL service.
Certificate comparison
Certificate | Type | Subdomains | Aliases | SSL service required? |
DV SSL Actalis | DV | ✅ | ❌ | ❌ |
Let’s Encrypt | DV | ✅ | ✅ | ✅ |
Rapid SSL | DV | ❌ | ❌ | ✅ |
QuickSSL Premium | DV | ❌ | ❌ | ✅ |
Rapid SSL Wildcard (*) | DV | ✅ | ❌ | ✅ |
To order the
SSL, follow these
instructions. The procedure for activating the DV SSL certificate is described in this article.