>>>>>Hello,
>>>>>I am trying to create a web application that accepts credit card info and processes it through PayPal. The PayPal stuff is out of the scope of my question for now. I am assuming I want to enable SSL on my website if I am accepting a credit card number.
>>>>>
>>>>>How is that accomplished? Is there any configuration needed? My web site host has an SSL addon that I can purchase. Basically, if I can access my web application with an https:// prefix, does that mean all is well?
>>>>
>>>>Yep. That's it.
>>>
>>>Great. I checked my host and they charge per month to provide SSL compatiblity, but I have to provide the certificate. I check VeriSign and it was $399/year. Yikes!
>>>
>>>Stupid security.
>>Godaddy, thawte and geotrust are cheaper alternatives. You pay for the name with Verisign.
>That's just it though - with e-commerce security a name could be the difference between a sale and a no-sale.

The vast majority of consumers don't know the difference, and the keys perform the same, with the same level of encryption. Personally, I use Thawte on our company site, and a Network Solutions wildcard secure key on a dozen other servers.