fbpx
Back to menu

Certificates

Certificates

Server Certificates
  • SSL/TLS Certificates

    SSL/TLS certificates encrypt information, verify identity, and strengthen consumer trust. We offer a range of certificates that cover every security need.

Software & App Certificates
  • Code Signing Certificates

    Code Signing removes the “Unknown Publisher” security warning and identifies the publisher of a piece of software or an application.

Email Certificates (S/MIME)
  • PersonalSign Certificates

    Secure your emails by applying a digital signature, encrypting your email content, or a combination of both.

Document Certificates
  • Document Signing Certificates

    Digital certificates that can be used to sign or seal digital documents like Adobe PDF files or Microsoft Office files.

Qualified Certificates
  • PSD2 Certificates

    As one of very few European providers, we offer QWAC and QSealC certificates that comply with eIDAS and PSD2.

Back to menu

Solutions

Our solutions

⚡ Discovery Tools
  • ⚡ SSL360®

    Our brand-new discovery tool SSL360™ provides total visibility and control of public-facing digital certificates across your organization: Inventory, track, monitor, and renew your certificates — all in one place!

Certificate Management

Our full range of certificate management solutions covers every need — from individual customers and startups needing one or two certificates and up to large companies looking for enterprise-grade solutions:

  • Customer Portal

    Advanced, on-demand certificate management.

  • Managed SSL

    Optimized for professional use, Managed SSL is designed around enterprise-specific security requirements.

  • Certificate Manager

    Certificate Manager fully automates the entire certificate management workflow.

  • Managed S/MIME

    For enterprise organizations looking to implement an enterprise-wide, secure email solution.

  • AppviewX Cert+

    The certificate and key lifecycle automation platform. Prevent outages and ensure constant network availability by gaining full visibility into and control over your PKI.

High-Volume Document Signing
  • Digital Signing Service

    Our cloud-based digital Signing-as-a-Service solution providing companies and organizations with an easy-to-deploy and cost-effective way to add digital signatures to their existing workflows.

eIDAS
  • eIDAS and PSD2 certificates

    As one of very few European providers, we offer QWAC and QSeal certificates that comply with eIDAS and PSD2.

SSL Certificate reseller

Want to expand your revenue stream and provide your customers with top-notch online security? Look no further than becoming a Trustzone SSL Certificate reseller partner.

Back to menu

Support

Our Support

Our Support and Service

Our first-class customer service and support is the core of our business. Read more about what we offer here.

Contact Support

Our friendly support team is ready to help you!

Knowledge Base 💡

Our collection of support content: How-to guides, Roots, Intermediates, and FAQs.

Certificate Tools

Our CSR/Certificate decoding tool with intermediate fetching

📈 Most Viewed:

How to enable TLS 1.2 on Windows Server 2008/2016

Read more
Back to menu

Insights

Insights

Articles

Occasionally, we share our take on the world of PKI and SSL/TLS encryption and authentification. Read our articles here.

Customer case stories

More than 3,000 companies have already trusted us with their certificates. Read about a couple of them here.

Events and live webinars

Sign up for one of our live webinars or product demos. We look forward to seeing you!

Back to menu

About

About

News

From time to time, new regulations and developments affect the PKI and SSL/TLS realm. Read our news updates about that here.

About Us

Our founders Jacob and Henrik started TRUSTZONE more than 15 years ago. Read more about our story here.

Our Partners

Our partnerships are an important part of our story and our business. Read more about our partners here.

Cookies & Privacy Policy
General Terms of Sale and Delivery
Support Service Level Agreement
Careers at TRUSTZONE
CSR
Contact Us
code sign certificate Trustzone

HTTPS Everywhere: How to Navigate the New Best Practices for Internet Encryption

April 14, 2021

5 min read

HTTPS Everywhere refers to the standard procedure of using SSL/TLS certificates to encrypt and protect digital data. Previously, you’d only use certificates on selected pages, but now it’s best practice to ensure that absolutely *everything* is encrypted and protected by HTTPS. The result? The number of certificates has exploded and continues to rise sharply.

Trust is the foundation of the entire Internet economy. In line with increasing digitalization, data security has become an increasingly business-critical issue.

To gain and exhibit trust online, you need end-to-end protection of all the pages that users visit. SSL/TLS certificates are a key element since they encrypt all of the data sent between the browser and server.

Browsers are also placing increasingly greater emphasis on the proper encryption of websites. Result: The introduction of HTTPS Everywhere has led to explosive growth in certificate numbers.

This growth has major negative implications: Many organizations struggle to get and maintain an overview of their certificates. Even so, most companies have no actual overview.

Read on and see what HTTPS Everywhere means, why it’s important, and how you can maintain an overview and avoid critical downtime and discontinuation of services.

What is HTTPS Everywhere?

In short, HTTPS Everywhere is a best practice security measure: HTTPS Everywhere ensures that the entire online user experience is secured against threats.

The term refers to the use of HTTPS, which is a secure web protocol enabled by SSL/TLS certificates. HTTPS encrypts the information shared between the website and the user (including cookies).

HTTPS Everywhere refers to the fact that it is now standard procedure to use SSL/TLS certificates to encrypt and protect digital data: Previously, organizations would only add certificates to select pages. Fast forward to 2021, where everything must be encrypted and protected by HTTPS.

The result? The number of certificates that organizations handle has exploded and continues to rise sharply: From 2019 to 2020 alone, the average increase was a whopping 43%.

Numbers from Let’s Encrypt (who issues free SSL/TLS certificates without security validation) show a large increase in the development of how many pages are encrypted online:

In June 2017, 58% of all websites were protected by HTTPS. In 2020, that number rose to 81%. By February 2020, Let’s Encrypt counted an astounding one billion certificates issued!

The latest industry reports from Netcraft highlight this development: From January 2020 to December 2020, the number of valid certificates increased from 78 million to over 89 million.

HTTPS: Standard browser practice 

Restrictive use of SSL/TLS certificates will not only disappoint user expectations in terms of perceived (and actual!) security – it also fails to live up to the expectations from browsers and OS platforms.

The escalation of HTTPS is firmly encouraged by Internet browsers, which reward sites that use HTTPS while actively penalizing HTTP sites.

Chrome was the first major browser to take a stance actively. Since 2014, Chrome has recommended that every website, regardless of industry or company, be protected by SSL/TLS certificates – including websites that do not process any sensitive information.

Since then, others have followed suit, and today, HTTPS is standard practice on both Mozilla Firefox and Apple’s Safari.

In other words, HTTPS is not just about consumer confidence. SSL is included as a factor in the ranking algorithms and has a tangible impact on your SEO ranking.

Browsers have also continuously adapted their design to support their mission – including displaying a padlock (secure site) and a warning triangle (unsafe site).

Keep track of all your certificates

The sheer number of certificates is one thing; however, organizations struggling to keep up is something else entirely:

With their initial overview rapidly challenged by the explosive growth in certificates, more and more organizations struggle to keep track of their active SSL/TLS certificates.

Just a few years ago, many organizations had two or three active certificates. Fast forward to today, and most orgs have ten times as many.

To make matters worse, most organizations have far more active SSL/TLS certificates than assumed – and often from multiple certificate providers.

This means that it can be both time-consuming and difficult to establish an overview of all the certificates you have. In fact, as many as 3 out of 4 IT security professionals admit that their organizations lack a full overview of their certificates.

And that should be the cause of major concern: If you don’t have an overview of your SSL/TLS certificates, you basically don’t have control over your business-critical websites.

Anyone who assumes responsibility for an organization’s digital security needs to know:

  • how many certificates the organization has (and how many it is included in)
  • where these certificates are used (domains and subdomains)
  • what their purpose is
  • who issued them
  • when they expire

Given the sheer number of certificates, dates, subdomains, issuers, and more, it makes sense to collect everything in one place.

That is why we developed our newest solution, SSL360®. By bringing every domain and certificate related to any given organization together in one dashboard, SSL360® helps companies get a full overview of their certificates.

SSL360® finds and tracks all your public SSL/TLS certificates regardless of which CA (Certificate Authority) issued them. DigiCert, Let’s Encrypt, ZeroSSL – everything is brought together here. SSL360® also alerts you about expiring or rogue certificates. It tracks down certificates that you’re not in control of and lets you simplify your workflow and renew any certificate directly in the dashboard.

Learn more about SSL360® here.