SSL certificates explained: why HTTPS isn't optional anymore

Browsers warn visitors away from non-HTTPS sites. Google ranks them lower. Customers won't enter card details on them. Here's what an SSL actually does — and which kind you need.

SSL certificates explained: why HTTPS isn't optional anymore

SSL certificates went from "nice for e-commerce" to "required for every site that wants to be taken seriously" in about five years. Browsers now actively warn visitors away from HTTP-only sites, Google ranks them lower, and customers won't enter card details on them. Here's what an SSL actually does, which kind you need, and how to get it.

What an SSL certificate does

Three things, in plain English:

  • Encrypts data in transit. Without HTTPS, anyone on the same network as your visitor (coffee shop wifi, hotel wifi, hostile ISP) can see exactly what they're typing into your forms. With HTTPS, the connection is encrypted end-to-end.
  • Verifies you are who you say you are. The certificate is issued by a trusted Certificate Authority (Sectigo, Let's Encrypt, DigiCert) after they verify control of the domain. Visitors get a guarantee they're talking to the real site, not a man-in-the-middle.
  • Unlocks modern web features. Browsers require HTTPS for service workers, geolocation, push notifications, HTTP/2 — basically everything that makes a website feel modern.

The three certificate types

DV (Domain Validated) — free or ~$10/yr

The CA confirms you control the domain (by serving a file or DNS record). Issued in minutes. Address bar shows the padlock. Good for: 90% of sites — blogs, small business sites, portfolios, dev/staging environments. Let's Encrypt is free DV.

OV (Organization Validated) — ~$50–$100/yr

The CA also verifies your organization legally exists by checking business registries. Issued in 1–3 days. Same padlock as DV, but the certificate details (visible when clicking the padlock) show your verified company name. Good for: SaaS, B2B services, any site customers research before buying.

EV (Extended Validation) — ~$150–$300/yr

Most rigorous verification. Used to display a green company-name bar in browsers; modern browsers removed that visual treatment, which dramatically reduced the EV value proposition. Good for: financial institutions, healthcare, government.

What about wildcard certificates?

A wildcard SSL (*.yourdomain.com) covers every subdomain — app., blog., api., checkout. — under one certificate. Costs more than a single-domain SSL but cheaper than buying one per subdomain. Buy a wildcard if you have 3+ subdomains.

Our recommendation

For most sites: DV is fine. The padlock looks identical. Browsers treat all SSLs the same. Don't pay $100/year for OV unless you're running a business that genuinely needs the third-party verification of your organization.

For e-commerce, financial, healthcare: OV is worth it for the verified-company visibility when curious customers click the padlock.

Where Modusdom fits

Every domain you register with us comes with a free Let's Encrypt DV SSL pre-configured if you use our DNS. If you need OV or wildcard, we sell Sectigo-issued certificates with same-day issuance. See SSL options in your account for pricing.

Was this article helpful?

Build your business on a domain you actually own.

Search every ending in real time, get business email that lands in the inbox, and never get surprised at renewal — flat pricing, free WHOIS privacy, and a real human who answers.

No upsells at checkout · Free WHOIS privacy · Same price every year · Transfer out free, anytime

Find a domain See flat pricing