Differences Between SSL Certificate Types
SCM provides OV, EV, and DV SSL certificates.
This topic describes the differences between different types of certificates.
- Currently, CFCA certificates cannot be purchased on the console. You can submit a service ticket to apply for CFCA certificates.
- Special enterprises cannot apply for OV or EV certificates. For example, military units, some government agencies, and national security departments.
To apply for OV and EV certificates, organizations must verify their identity through unified social credit code published on the national official website. While, special enterprises cannot verify their organization identity because there is no related details on that website.
Certificate Types
On SCM console, you can buy DV, OV, and EV SSL certificates. Different types of certificates have different application scenarios, trust levels, and security strength. For details, see Table 1.
|
Item |
EV |
OV |
DV |
|---|---|---|---|
|
Certificate Authority |
EV: DigiCert, GeoTrust, and GlobalSign |
OV: DigiCert, GeoTrust, and GlobalSign |
DV: GeoTrust |
|
EV Pro: DigiCert |
OV Pro: DigiCert |
DV (Basic): DigiCert and GeoTrust |
|
|
Domain type supported |
Single domain names and multiple domain names |
Single domain names, multiple domain names, and wildcard domain names |
|
|
Typical application scenarios |
Large enterprises, institutions, and organizations with strict security requirements For example, financial institutions, insurance agencies, and banks. |
Education agencies, government departments, Internet companies, applications of small- and medium-sized enterprises, and e-commerce platforms For example, Apple Store and WeChat applet. |
Personal websites and enterprise tests |
|
Showing a browser padlock icon |
√ |
√ |
√ |
|
Showing enterprise names in the browser address bar |
√ |
× |
× |
|
Security strength |
Highest |
High |
General |
|
Review duration |
7 to10 working days |
3 to 5 working days |
Several hours |
|
Verification requirements |
The CA reviews all details. |
The CA reviews the authenticity of the organization or enterprise. |
The CA reviews the personal website identity, but does not verify the enterprise identity. |
|
Cryptographic algorithm |
EV
|
OV
|
DV: RSA. GeoTrust provides DV certificates. |
|
EV Pro: RSA and ECC. DigiCert provides EV Pro certificates. |
OV Pro: RSA and ECC. DigiCert provides OV Pro certificates. |
DV (Basic): RSA. DigiCert and GeoTrust provide basic DV certificates. |
Certificate Authorities
For details about CAs supported in SCM, see the following table.
|
Certificate Authority |
Description |
|---|---|
|
DigiCert |
DigiCert, formerly Symantec, is the world's largest CA. It provides services for more than 100,000 customers in over 150 countries and regions. Advantages: High security, stability, and compatibility. Suitable for digital transactions with high security requirements and widely used by financial institutions. |
|
GeoTrust |
GeoTrust, the world's second largest CA, is an industry-leading provider of identity and trust validation. It is committed to offering the best service at the lowest price possible to enterprises of all sizes. Advantages: Powered by DigiCert. High security, stability, and compatibility, cost-effective, and less know-how required for HTTPS protection |
|
GlobalSign |
Founded in 1996, GlobalSign is one of the world's earliest CAs. A trusted CA of SSL digital certificates, they have partnered with many companies around the word. Advantages: Fast issuance and verification Widely used by large e-commerce enterprises (including HUAWEI CLOUD), supported standard RSA+ECC algorithms, less resource required for installation |
Promotion activities (using domain name www.a.com and root domain name a.com as an example)
Last Article: What Is Cloud Certificate Manager?
Next Article: Functions
Did this article solve your problem?
Thank you for your score!Your feedback would help us improve the website.