Inflow

Inflow: eCommerce Marketing Agency

Which SSL Certificate Should You Choose for SEO and Conversions?

Avatar for Mike BelascoBy Mike Belasco on

  • 12shares

Avatar for Mike BelascoBy Mike Belasco on

By Mike Belasco and Michael Kuehn 

More and more websites are moving from unsecured sites to SSL. There are two primary reasons for this sudden increase in SSL sites. First, Google is strongly encouraging the web to become a more secure place and has incentivized website managers to move to SSL by offering a “rankings boost” for secure sites.

There are many studies out there regarding exactly how much of a boost a site might receive, as well as some of the drawbacks that could impact traffic and usability if the migration is not handled correctly. Second, Google also announced changes to Chrome, which will make users more aware of sites that are secure or not secure. (There is more on this below).

So you’re convinced moving to SSL is a good idea and investment. Your next step is to acquire an SSL certificate. A question we often get from clients who are moving to an SSL site is “which SSL certificate should I choose?” The options seem virtually endless and can be quite confusing.

As an eCommerce Marketing company, actually securing the site and database is a bit out of our wheelhouse, however, there are some “marketing” considerations that should be included in the selection process.

What Type of SSL Certificate do I Need?

The first thing to determine is which type of SSL certificate you’ll need. Currently, there are three major types of SSL certificates available:

  • Domain Validation certificates (DV)
  • Organization Validation certificates (OV)
  • Extended Validation certificates (EV)

It is likely when you are shopping for an SSL certificate, you’ll see more than three options. Let’s take a look at Symantec’s offerings, as well as Comodo:

Symantec S S L Comparison chart comparing five options according to the following: Price: 1 year, Green address bar, E C C: strongest security, Warranty, Trust Mark, Critical vulnerability scan.

Comodo S S L Comparison chart comparing five options according to the following: Green address bar, 128/256 encryption, 2048 but root keys, site seal, validation level, designed for exchange mail servers and O C S environments, security multiple domains, secure unlimited sub-domains, warranty level, 99.9% browser ubiquity.

Comodo InstantSSL makes it a little more clear in their comparison table which type of validation is used for each product. Regardless, you’ll notice both Instant SSL and Wildcard SSL utilize Organization Validation. In this case the difference isn’t the validation type, but rather it is the ability to secure subdomains, as well as your main domain. A Multi-Domain certificate is also an option not shown in the table above.

EV certificates are not available as a “Wildcard” option. Symantec (top comparison table) does allow you to purchase an add-on Subject Alternative Name (SAN) to use your EV certificate on a subdomain or TLD. If you are an eCommerce site, you really need an EV certificate and the extra security it provides.

Here is a nice breakdown of each type of certificate from HostingAdvice.com:

A table titled An overview of the basic types of S S L Certificates Available with three columns labeled: Certificate type, types of sites, and features. Three rows of data as follows. Certificate type: Extended validation (E V), Types of Sites: ecommerce, sites collecting personal info, sites where user trust is paramount, Features: 2048-bit encryption, Green bar to provide top-of-the-line trustworthiness, the types used by web giants like Twitter, banks, etc., issued in 3 - 5 days. Certificate type: Organization validation (O V), Types of Sites: ecommerce, sites collecting personal info, Features: Verified that the site is a registered government entity, 128-, 256-, or 2048 bit encryption, issued in about 24 hours. Certificate type: Domain Validation (D V), Types of Sites: Testing sites, internal sites, non-ecommerce sites, Features: Very affordable, issued almost immediately.

Where to Get SSL Certificates?

SSL certificates are sold by Certificate Authorities (CAs). You can buy SSL certificates directly from the CA or sometimes more expediently and seamlessly through your hosting company. Here are the top Certificate Authorities, according to Wikipedia. As you can see above, the prices, products and options can really vary.

A table with four columns: Rank, issuer, Usage, market share. 16 rows of data as follows: Rank: 1, Issuer: Comodo, Usage: 8.1%, Market Share: 40.6%. Rank: 2 Issuer: Symantec, Usage: 5.2%, Market Share: 26.0%. Rank: 3, Issuer: GoDaddy, Usage: 2.4%, Market Share: 11.8%. Rank: 4, Issuer: GlobalSign, Usage: 1.9%, Market Share: 9.7%. Rank: 5, Issuer: IdenTrust, Usage: 0.7%, Market Share: 3.5%. Rank: 6, Issuer: DigiCert, Usage: 0.6%, Market Share: 3.0%. Rank: 7, Issuer: StartCom, Usage: 0.4%, Market Share: 2.1%. Rank: 8, Issuer: Entrust, Usage: 0.1%, Market Share: 0.7%. Rank: 9, Issuer: Trustwave, Usage: 0.1%, Market Share: 0.5%. Rank: 10, Issuer: Verizon, Usage: 0.1%, Market Share: 0.5%. Rank: 11, Issuer: Secom, Usage: 0.1%, Market Share: 0.5%. Rank: 12, Issuer: Unizeto, Usage: 0.1%, Market Share: 0.4%. Rank: 13, Issuer: QuoVadis, Usage: less-than 0.1%%, Market Share: 0.1%. Rank: 14, Issuer: Deutsch Telekom, Usage: less-than 0.1%%, Market Share: 0.1%. Rank: 15, Issuer: Network solutions, Usage: less-than 0.1%%, Market Share: 0.1%. Rank: 16, Issuer: T W C A, Usage: less-than 0.1%%, Market Share: 0.1%.

Which SSL Certificate Type is Best for SEO?

According to Google’s John Mueller, currently Google doesn’t care what type of SSL certificate you use (in order to get the rankings boost) because they are all treated the same. “It either works or it doesn’t work,” said Mueller. He subtly mentions after that, at some point Google might differentiate between the types of certificates. Depending on the cost of the certificate, from an SEO angle, it might make sense to upgrade to EV as extra insurance because you’ll be in a good spot if Google does decide to handle certificate types differently.

While it may seem clear that Mueller is saying it doesn’t matter which SSL certificate you choose so long as it is working, there is always a little more “around” the story to consider. For example, we know that Google is utilizing quality signals such as click-through rate from the SERPs or dwell time and bounce rate once a user has clicked a search result. It is possible that the type of certificate you choose and the accompanying trust seals many SSL solutions come with could affect these metrics positively or negatively. More on this below.

Which SSL Certificate Type is Best for Conversions?

More Trust = More Conversions

Trust is one of the biggest factors when users decide where to shop. Among other things, knowing a site is secure, especially when either personal or payment information is requested, makes a huge difference. If you can address this right up front by showing your site to be secure, you handle that objection before the user has a chance to even consider this factor. In this regard, the ability to show the little green lock through the entire session allows your user to breathe easy from the get go, and it will become even more important with the pending change to the Chrome browser.

A table with two columns labeled icon and what it means. Four rows of abbreviated information as follows: Icon: a globe, what it means: The site isn't using S S L. Icon: A green lock followed by https://, What it means: Google Chrome has successfully established a secure connection with the site. Icon: A lock with a yellow bell followed by https://, what it means: The site uses S S L, but Google Chrome has detected insecure content on the page. Icon: A lock with a red x followed by crossed out https://, what it means: The site uses S S L, but Google Chrome has detected either high-risk insecure content on the page or problems with the site's certificate.
Current treatment, caption mentioning expected release date.

Image via

Three U R L bars in a vertical column. The top U R L for medium.com starts with a green lock and the text: Secure. The middle U R L for spotify.com Starts with an information icon and text: Not secure. The bottom U R L for framerjs starts with a red triangle containing an exclamation point and text: Not secure.
New treatment to be released after the holidays, caption mentioning expected release date.

Image via 

Separately, we know that trust seals on your site help conversion. We have also seen throughout various tests that the familiarity a user has with your 3rd party trust seals can impact how much this helps – having an unrecognized logo sometimes actually hurts conversion. However, it’s important to note that the provider of your SSL certificate need not be the same provider as other trust elements or security services. For example, Google Trusted Store is a huge trust factor, as is a strong BBB rating – displaying these through the shopping process can have the same, if not a bigger, impact on user behavior than showing who is providing your SSL certificate, especially if that provider is not well recognized.

Also important to note – from a conversion perspective the level of your SSL certificate is likely to have minimal impact. To the average user, the display difference between the levels of verification is unnoticeable. Additionally, very few users actually click this area to see the details of the certificate. Unless your site requires the added security for some reason – dealing in highly sensitive information, working with security professionals, etc. – you can probably get by with the cheaper options. As always, it is recommended you test this for yourself if possible. Most SSL companies should facilitate this testing as it opens the potential for upselling your business to the new certificate.

Wikipedia U R L starts with a lock followed by https://

PayPal U R L starts with a lock, followed by PayPal, Inc., [U S], followed by https://.

It’s important to show badges to build trust, and equally important for trust to have a secure site, but your trust elements need not specifically refer to who provides your SSL certificate. Make sure when showing logos on your site that they are recognizable brands in order to get the biggest possible positive impact.

If you still need help picking an SSL certificate provider and a migration, give us  call. We can help from consultations to full strategies.

Avatar for Mike Belasco By Mike Belasco
  • 12shares

4 Comments

  1. Just noticed your site does not use SSL. Are you therefore not concerned about ranking?

    Reply

    • Hello Sue,

      Migrating to SSL is a project we have scheduled for later this year. As with any business, we need to prioritize where we spend our limited resources. Our bigger concern in 2016 was having a more mobile-friendly site. In 2017 we are going to work on speed and a migration to HTTPs. Thank you for your question.

      Reply

    • Hi Mark,

      We haven’t necessarily seen any particular benefits (like increased traffic etc.) as a result of switching to HTTPS, however, that might be a benefit in and of itself since we also haven’t seen a dip in traffic due to the lack of security. Sometimes the biggest benefit is just avoiding a negative result. Thanks for commenting!

      Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Related Posts

About The Author

A photograph of Mike Belasco on a hiking trail.

Mike Belasco

Mike Belasco has been an entrepreneur and digital marketer since 2003. He’s been the CEO of Inflow (founded as seOverflow) since 2007 and has led Inflow to five Denver’s Fastest-Growing Private Company awards and three Inc. 5000 awards. In 2009, he also founded ConversionIQ, which was acquired by Inflow in 2014.

View Author’s Profile

Request a Proposal

Send this to a friend