SSL on WordPress: Cheap v/s Expensive SSL certificates

I'm exploring several SSL certificates for my website. My primary requirement is to secure the wp-admin directory and also certain pages of the front-end where we collect some basic info (name, email, phone number) from our users. We don't collect and don't plan to collect any highly sensitive information such as credit card and bank account details.

I have found several SSL certificates and their pricing ranges from $4.99/yr to some priced as high as $1000/yr.

My question is how are these certificates different in terms actually securing the site? Value of assurance and different type of validations aside, are there any technical benefits in terms of security with the more expensive certificates?

Additionally, is there a good way to actually implement SSL on a non-multisite WordPress site without any significant hassles?

  • Michelle Shull
    • DEV MAN’s Apprentice

    Hi, RB!

    It can definitely be overwhelming, and there are a lot of options. I've pointed a lot of members to GoDaddy to pick up an SSL cert, they're pretty inexpensive without being eye-brow-raising cheap like the low end of your search results. You definitely don't need anything that will cost $1000 a year if you aren't collecting payment methods or government ID numbers. Multi-domain SSLs or wildcard SSLs can be more pricey, but you're on a single site, you don't need any of that.

    One piece of advice I'd give you is to just go all in and protect your entire site under SSL. It won't hurt anything, and it will be much less complicated. There's even a free WordPress repository plugin that will do all the heavy lifting to protect everything at once.

    There's a big push in certain internet circles to encourage https everywhere. It's an interesting conversation, if you'd like to do more reading.

    Thanks for your question!

Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.