I need an SSL for a site I'm setting up because I am using iframe to run a credit cart entry page on the site, prices on SSL certs seem to vary from $3 to $300

Can i just go with the cheapest? I presume the most important is browser compatibility but some (the cheap ones) don't always state mobile compatibility so what happens if someone is using a mobile device?

any tips?

 

There are a few functionality differences available, you can get "SAN" certificates which allow you to add multiple names such as:

sales.scooby.com
admin.scooby.com
forums.scooby.com

etc etc, so you only need one cert for all sites/services.

Other than that it's pretty much recognisability/support you're paying for. If a device/browser doesn't recognise a cert, the user would get certificate errors similar to: http://help.37signals.com/basecamp/q...-into-basecamp

I use GoDaddy for work, I can highly recommend their support but not sure how competitive they are for costs.

Hope that helps

 

certs on Go-Daddy are super cheap.

 

ssl certs perform 2 functions

encrypt a connection (they all do that, some with better encryption 1024 > 2048 etc than others)

and present "trust", in other words proof of identity

so a major Bank would not go with a GoDaddy certificate because the level of "trust" is not the same as a Thawte / Verisign etc

Thawte / Verisign - have a much more stringent domain verification procedure than GoDaddy - but they need it because of the money/reputation at stake

most organisations simply do not

the simple analogy is that a passport is trusted as proof of identity more so than a gas bill

godaddy in 99% of cases will fit the bill - and good value