: Should I get an SGC enabled SSL certificate? I'm in the market for a new SSL certificate and am wondering if I should get an SGC enabled certificate or not? In the past I have just used
I'm in the market for a new SSL certificate and am wondering if I should get an SGC enabled certificate or not? In the past I have just used cheap SSL certificates but since this is for a new company website I want to make sure I have the best but I am unsure whether it is worth paying the extra.
The documentation states that it just enables older browsers to use 128 bit encryption when they would normally only be able to use 40 or 56 bit encryption. Would you pay the extra for older browsers which are likely to be extremely rare?
More posts by @LarsenBagley505
3 Comments
Sorted by latest first Latest Oldest Best
Any browser that's sufficiently old to require SGC certificate to use strong encryption should be considered ancient: it will certainly contain plenty of other security bugs and be open to most vulnerabilities discovered over the past 10 years or so. At that stage, strong or weak encryption would be almost irrelevant.
It's never easy to cut off part of your user base, but if you have users who still use such browsers, just tell them to upgrade.
If you are restricting weak, anonymous, and export grade encryption on your web servers anyway in order to comply with the many security standards and policies out there, you're achieving the same effect that an SGC cert would have provided you. There's no need to spend the extra money on them any more.
Even IE6 supports 128 bit encryption. Do you plan to support browsers older than IE6 throughout the site? If not, and I can't imagine you would, then I wouldn't bother.
Terms of Use Create Support ticket Your support tickets Stock Market News! © vmapp.org2024 All Rights reserved.