Trustwave Product FAQ : Common Questions and Answers about our SSL Certificates

1. Why do I need an SSL Certificate?

If you can answer yes to the following questions, then you need to purchase a SSL Certificate:

Does your company have a Website, Mail Server, or Intranet that needs to be secured?
Do you collect personal or financial information from your customers?
Are you selling products from your website?

A 256-Bit SSL Certificate from Trustwave Corporation will encrypt the information sent or received from your customers.

2. What browsers are Trustwave SSL Certificates Compatible with?

The following Browsers and operating systems come pre-installed with our Root Certificate:

Browsers:

Internet Explorer 5.00.2919.6307 and above
Netscape 4.61 and above
AOL 5 and above
Opera 6.1 and above
Mozilla 0.9.8 and above
All versions of Safari
Firefox 0.7 and above (Includes similar Linux clones, like Epiphany, Galeon, and Konqueror)

Operating Systems:

Microsoft Windows
Macintosh
Linux

Important: If your browser, or a customer's browser or operating system is not listed above:
Your certificate is still 100% compatible with all older versions of browsers and operating systems that are SSL v3.0 compatible (basically all browsers & operating systems released since 1996). To eliminate a browser warning on these older browsers, your customer can simply install our root on their machine (a relatively simple process that users of older browsers are usually familiar with) and then they will automatically trust our certificates. If they choose not to install our root, they can simply click the "Continue" button when prompted and you will still provide SSL encryption between their browser and your server.

3. Why choose Trustwave ?

We offer you the same or greater protection as anyone, without all the hassle or delayed validations. Our customer support is second to none available by toll free telephone or email and we're located in the United States. Currently, 256 bit SSL Certificates are the strongest encryption available to the general public and Trustwave Corporation was the first to introduce it. This gives Trustwave Corporation customers peace of mind knowing that their servers and customers are extremely secure. To further ease your customers mind, a site seal is available with every SSL to place on your website.

4. Which SSL Certificate do I need?

Trustwave Corporation offers two different levels of Validation Guarantees for your protection and both come with a 30-day, no-questions-asked, money-back guarantee.

For standard business websites, mail servers, and intranets; the Standard SSL with the $100,000 guarantee is sufficient.
Enterprise Level Companies need higher guarantees. We offer the Enterprise SSL with a $250,000 validation guarantee.

5. What is a Wildcard SSL Certificate?

A wildcard certificate, denoted with a common name in the format of *.domain.com allows you to secure an unlimited amount of subdomains all with one wildcard certificate. If would like to secure your webmail, internet, customer portal, control panel, etc. the wildcard certificate provides the best value and ease of use available.

6. What does the $100,000 or $250,000 warranty cover?

You offer security on your site so that your customers feel secure in transacting business with you online. Our certificates offer your customers an additional comfort by protecting their purchases for up to the warranty amount. We guarantee to your customer that you are you and that you are a real entity. Our certificates also guarantee to your customers your geographical location. All of this information leads to a more comfortable customer who is more likely to use their credit card to make a purchase on your site.

We pre-validate our certificate holders and provide validation that is far higher than the majority of other SSL providers. Some CA's have very weak validation hence they decide NOT to even offer a identification warranty! Please note that this high level of validation does not compromise the of speed of which we can approve your certificate request.

7. How does SSL protect against phishing?

While lower quality, class 1 and 2 certificates only validate basic domain information, Trustwave Class 3, 256-bit certificates are fully validated to verify domain and organization information. By requiring organization validation, Trustwave is making it more difficult for illigitimate companies to obtain a false certificate.

8. What does the 30-day Money Back Guarantee mean?

When you purchase any Trustwave SSL Certificate, we guarantee that you will be 100% satisfied with both your new certificate and our service. If, for ANY reason, you are not completely satisfied with your purchase, you can request (and receive) a 100% refund within 30 days of your certificate purchase date. We at Trustwave take great pride in being able to offer you the best service and support in the industry.

9. What is the difference between Class 2 and Class 3 Certificates?

While Class 2 Certificates only verify that your domain is valid, Class 3 Certificates go a step further to validate your organization as well. This provides peace of mind to your website visitors; letting them know they are doing business with a verified organization.

10. Why are Trustwave SSL Certificates so inexpensive?

The real question you should ask is: "Why do the others charge so much?!"

Trustwave provides high-quality 256-bit certificates at a deep discount to promote our overall brand. Trustwave Corporation, Inc. is an industry leader in Internet Security and offers cost-effective security solutions and software targeted to small to medium sized businesses and enterprise branch offices.

We want to promote our brand. Throughout the Internet there are sites that display our competitor's logos making these brands nearly a household name. Each of our customers who purchase certificates from us can proudly display our Secure Site Seal which will show their customers that you are using 256-bit security to protect their personal information.

Important Note: You are not required to display a Site Seal for your certificate to work. There are no AdWare or pop-up ads in the event that you do choose to display your Trustwave Secure Site Seal. The simple fact is that most vendors choose to display a Secure Site Seal to let their customers know that they are using 256-bit encryption on their site. If you do choose to display a Secure Site Seal, we would like it to be ours!

11. Does Trustwave SSL meet HIPAA standards?

Our SSL Certificates meet the government approved, AES-256 bit encryption standards required for HIPAA compliance.

12. How long does it take to process my application?

Provided we have sufficient validation information available through trusted third-party databases, your Trustwave SSL Certificate can be issued in only minutes. If additional verification processes must be used to validate your application, the issuance process may take slightly longer. In such cases we guarantee that the Certificate is issued within two (2) working days. Please contact us directly to expedite your Order should it be urgent.

13. Do Trustwave SSL Certificates only support 256 bit encryption?

No, they are 100% backward compatible and support the key size as determined by the web server or browser, if the web server or browser can only negotiate 128, 40, or 56bit then it will use the highest level of encryption available for the session.

14. What is strong encryption?

This is another term for 128 bit encryption. All Trustwave certificates are capable of strong encryption.

15. I am not a company, can I apply for a certificate?

Yes, anyone wishing to provide a confidential and secure link between server and customer's browser can apply for a certificate.

16. When I generate a CSR, what do I put in the Common Name field?

The Common Name field contains the domain or server name including the sub-domain you wish to secure. A typical common name would look like "www.trustwave.com" or "secure.Trustwave .com". Do not include http:// or https:// before the name or any subfolders indicated by the / after the domain name.

17. I ordered my certificate but I chose the wrong type. Do I need to re-apply?

No. You can select a different format in your SSL Account Management page and then reissue the certificate. There is not a charge for this and it only takes seconds to reissue your certificate using the new format.

18. How can I learn the status of my application?

Contact support at Support@Trustwave .com with your order number and a member of the team will be happy to update you.

19. I have made a mistake on my application. What do I do?

If you have already submitted your application please contact Support@Trustwave .com quoting your Order Number and details of the mistake. In some cases you may need to submit a replacement CSR.

20. Can I apply for a certificate for each subdomain of the main domain?

Yes, but it may also be more cost effective to use a Wildcard certificate which protects all sub-domains below the primary named domain. For more information please contact sales@Trustwave .com

21. Can I have a SiteSeal with no roll-over image?

If you would like to have your site seal not include the java-script roll-over functionality, we have a very easy fix for you. Simply add &np=1 to the end of your SiteSeal link, and the roll-over is then disabled!

22. How do I stop my client's browser from showing "The security certificate was issued by a company you have chosen not to trust"?

If your client's browsers is showing the error "The security certificate was issued by a company you have chosen not to trust" you may attach the following javascript to the Header of your site to help their browser find the necessary intermediate files.

<script type="text/javascript">
// test for IE version
if (navigator.appName == 'Microsoft Internet Explorer') {
var ver=-1;
var ua = navigator.userAgent;
var re = new RegExp("Windows NT ([0-9]{1,}[\.0-9]{0,})");
if (re.exec(ua) != null)
ver = parseFloat( RegExp.$1 );
if (ver >= 5.1) {
try {
ev.src = "https://ev.securetrust.com/images/pixel.gif";
}
catch (e) {}
}
}
</script>