I'd like you to give me some advice bout SSL-certificates cause I've never been concerned with this before.
We are building a web application using ASP.NET and MERE MORTALS. Now it's time for securing the communication with SSL.
I know two products VERISIGN's Secure Site Pro and THAWNE's SGC - both of them offer the save features but the price for the VERISIGN product is two times the one of THAWNE.
What are the differences, I cann't find any (except the name)? Which product would you prefer? Could you also please tell me some pros / cons of these two or other products? We recently had this discussion in one of our Certification Prep Meetings - Apparently Thawne had problems at one point because their certificates were compremised but since then they created a new root certificate. At one point they even offered free certificates to get their clients back. I've used them and had no problems.
In fact, I've used OpenSSL and have had no problems. A certificate is a certificate whether it comes from Verisign, Thawne, OpenSSL, Robert Ohlicher or Victor Campos - They are all as secure as the other. What matters is the trusted authority. Verisign and Thawne are the two trusted Authorities that were included in IE. Other browsers may have OpenSSL as well as other free SLL Certificate Distributors.