SSL certificates explained: types, validation levels, and why you need one
What's the difference between DV, OV, and EV SSL? Do you need a wildcard? We explain SSL certificates in plain English — no computer science degree required.
IM
Ibrahim Musa
Security Engineer
If you've ever wondered why some websites show a padlock and others show "Not Secure," the answer is SSL certificates. This guide explains what they are, the different types, and which one you need.
What is an SSL certificate?
SSL (Secure Sockets Layer) — technically now called TLS (Transport Layer Security) — is a protocol that encrypts data between a website and its visitors. An SSL certificate is a digital file that:
Encrypts data — passwords, credit cards, forms become unreadable to interceptors
Proves identity — confirms you are who you say you are
Enables HTTPS — the secure version of HTTP (the padlock in the browser)
Without SSL, data travels in plaintext — anyone on the same network can read it.
The 3 validation levels
Domain Validation (DV) — Free, instant
The certificate authority (CA) only verifies that you control the domain. This is what Let's Encrypt provides.
Pros: Free, issued in seconds, auto-renews
Cons: No organisation identity shown
Best for: Blogs, personal sites, small businesses
The CA verifies your organisation exists (business registration, phone verification).
Pros: Shows company name in certificate details
Cons: Costs money, takes 1-3 days to issue
Best for: Mid-size businesses, e-commerce
Extended Validation (EV) — ₦60,000+/yr
The most rigorous validation — verifies legal, physical, and operational existence.
Pros: Historically showed the green company name bar (deprecated in most browsers)
Cons: Expensive, takes 1-2 weeks
Best for: Banks, large enterprises, fintech
Do you need a paid certificate?
For 95% of websites: No. A free Let's Encrypt DV certificate provides the exact same encryption as a ₦60,000 EV certificate. The difference is identity verification, not security.
All Danets Server plans include free Let's Encrypt SSL — auto-renewed forever.
Wildcard SSL
A wildcard certificate covers *.yourdomain.com — all subdomains at once.
Without wildcard: You need a separate certificate for blog.yourdomain.com, shop.yourdomain.com, app.yourdomain.com
With wildcard: One certificate covers all of them.
Wildcard SSL is included on Danets Server Business and Professional plans.
How to check if a site has SSL
Look for https:// in the URL (not http://)
Look for the padlock icon in the address bar
Click the padlock → "Certificate" to see details
What SSL doesn't do
SSL is important but it's not a magic security shield. It does not:
Protect your server from hacking (use a firewall + strong passwords)
Prevent malware (use ImunifyAV+, included on all our plans)
Stop DDoS attacks (we include DDoS protection at the network edge)
Backup your data (we include daily backups)
SSL is one layer of security — important, but not sufficient on its own.
Mixed content errors
If your site loads over HTTPS but some resources (images, scripts) load over HTTP, browsers show a "mixed content" warning. Fix this by ensuring all URLs use https://.
Most CMS platforms (WordPress, Joomla) handle this automatically when you set the site URL to HTTPS.
Ready to secure your site?
Every Danets Server plan includes free, auto-renewing SSL. Browse plans and have your secure site live today.