Frequently asked questions

General Certificate Questions

The Secure Sockets Layer (SSL) and Transport Layer Security (TLS) is the most widely deployed security protocol used today. It's a protocol for enabling data encryption and site authentication on the Internet. Credit card numbers, health details and other sensitive information is transmitted only after being converted into a secure code. Domain authentication reassures site users that they're actually interacting with the site identified in the URL bar. Without SSL, online transactions would be vulnerable to interception by unauthorized parties. These hackers or identity thieves could also more easily imitate a legitimate website. SSL is most commonly used to protect communications between web browsers and servers. However, it is also used for server-to-server communications and for web-based applications.

Companies that issue SSL certificates are known as certificate authorities. The protection provided by an SSL certificate is only as good as the company that stands behind it. Web browsers like Firefox and Chrome maintain a list of trusted certificate authorities. If your website serves up one of these trusted certificates, the browser will recognize it as "secure".

TrustCor is a trusted certificate authority. Our SSL certificates are trusted by all of the common browsers, providing reassurance and protection to countless visitors.

TrustCor's certificates can be purchased for terms of 1-2 years.

Yes. TrustCor SSL certificates are automatically trusted in all current versions of popular browsers including Safari, Firefox, Google Chrome, Microsoft Edge and Internet Explorer. TrustCor certificates are also compatible with the following operating systems: Microsoft Windows, Apple OS X/macOS, Linux, Android, iOS, Windows Phone, Chrome OS.

Domain validation is where TrustCor checks the right of the applicant to use a specific domain name. No company identity information is vetted and no information is displayed other than encryption information within the Secure Site Seal. TrustCor will confirm domain control by sending an email to the administrator listed with the registrar for the domain. If the authorized administrator does not reply, a second email will be sent to an email address at the domain such as info@ or support@. (You may select a secondary email address during the application process.) In addition to validation by email, you will be asked to provide a telephone number where you can be reached immediately after submitting your certificate application. If everything checks out, the SSL certificate is issued.

Organization validation is where TrustCor first checks the right of the applicant to use a specific domain name, then TrustCor conducts vetting of the organization. Additional vetted company information is displayed to customers when clicking on the Secure Site Seal, giving enhanced visibility in who is behind the site and associated enhanced trust.

When a browser connects to a secure site, it retrieves its SSL certificate and checks for expiration, that the certificate has been issued by a certificate authority the browser trusts, and that the certificate is being used by the website for which it has been issued. If it fails on any one of these checks, the browser will display a warning to the end user. If it succeeds, several security indicators are built into modern browsers to indicate that SSL is enabled.

  • The beginning of the URL or web address changes from http:// to https://
  • A padlock icon on the browser window changes from open to closed
  • In some browsers, the address bar will turn green and display the name of the website owner when connecting to a website protected by an Extended Validation SSL certificate.
  • In addition, a trust mark such as the TrustCor site seal may be added to web pages on a secure site.

SSL uses unique cryptographic key pairs: each key pair consists of a secret private key and a related public key. Information encrypted with a public key can only be decrypted with the corresponding private key, and vice-versa.

A CSR is a public key that you generate on your server according to your server software instructions. If you do not have access to your server, your web host or internet service provider will generate it for you. An applicant is required to provide a CSR during the SSL certificate application process to prove possession of the private key by providing us with the public key an applicant wishes to use.

Report your concern by filing out the form on TrustCor's Contact page. Please include a thorough explanation of your concern. Valid reasons can include:

  • Suspected or known compromise of the private key associated with the certificate
  • Certificate misuse
  • Code signing certificate used to sign suspect code
  • Takeover attacks
  • Use of the certificate for any other type of fraud or inappropriate conduct

TrustCor support is available 24x7. So when we receive such requests, we will begin an investigation within 24 hours. TrustCor will determine if the certificate must be revoked or if other action is warranted, according to the TrustCor CA CP/CPS.

When you install an SSL certificate on a server, you'll also need to install an intermediate certificate. This intermediate certificate establishes the trust of your SSL certificate by tying it to the Certificate Authority's root certificate. TrustCor 's Root Certificates are automatically recognized and included in the trust store of all popular web browsers, mobile devices, and mail clients, but there might be some cases where you will want to include the Root and Intermediate certificates when installing your certificate on a platform. You can find and download TrustCor's Root and Intermediate Certificates here.

We can help with that! Head over to our Certificate Install Support Page for an overview and guides on how to install a TLS/SSL Certificate and its prerequisites on the most common server types.