Enthusiasm never stops


StartSSL customer care

A few days ago I had to go through the “Class 2 Identity Validation (StartSSLâ„¢ Verified)” process, so that I can issue an unlimited count of wild-card certificates.

Before even getting any deeper in the process, I first contacted StartSSL and asked them if they stand behind their words, that once verified (one time-fee $49.90/yr), a customer of theirs can issue an unlimited count of wild-card certificates. I got a pretty quick response by StartSSL stating that this is indeed true, there’s no catch.

After that I started the process of verification – registered, submitted documents, etc. There were many unknown things to me and I had to ask their support many questions (I won’t go into details as I can’t disclose all of it), and we’re almost at the end – they send me a verification postal mail. Once I get the code, we should be done.

But this post is not only about my success with StartSSL – it’s about their very quick, accurate and helpful Support service. You guys rock!

Leave a comment

Free SSL certificates

More and more people start telling me about the StartSSL SSL authority, which is a daughter company of StartCom. The rumor that they are giving free SSL certificates looked too unbelievable to me, so I decided to review this more carefully.

After much reading at their page, what people say was confirmed – StartSSL really issue SSL certificates for free, when they are about to be used by individuals on their websites. This means that your personal name stays in the SSL certificate information which can be reviewed if you click on the SSL bar in your web browser.

Business or other legal entities verify their company’s information once for an annual fee and can then issue an unlimited count of SSL certificates too, including wild-card ones. Once verified, a business customer can purchase EV certificates for US$ 49.90 per year.

You can compare these prices with any other SSL certificate authority and you’ll see it yourself that StartSSL are the most affordable one, and the only one which doesn’t charge you for what doesn’t cost them money either – that’s why they can offer “loosely verified” SSL certificates for personal websites for free. It’s unbelievable but true.

My IT brain immediately started to doubt the technical side. I had to check if web browsers accept these SSL certificates without issuing an SSL warning about the certificate being signed by an unknown SSL authority. The test results were successful and the SSL root authority of StartSSL was recognized by the latest version of:

  • Internet Explorer 8 on Windows.
  • Chrome on Windows.
  • Firefox on Windows and Linux.
  • Chromium on Linux.

Furthermore, the Debian “lenny”, “squeeze” and Ubuntu Lucid CA repositories also recognize the StartSSL root certificate. You can verify this yourself by the following command:
openssl s_client -CApath /etc/ssl/certs -connect startssl.com:443

StartSSL have a long list with platforms and browsers which recognize their certificates. You can review the list at the products comparison page.

No more self-signed SSL certificates for personal use, hurray! 🙂

Update 29/Nov/2010: If you’re interested, you can also review my success story with the Support staff of StartSSL.