A TLS/SSL certificate is a digital certificate that allows systems to verify the identity of another system using the Secure Sockets Layer/Transport Layer Security (SSL/TLS) protocol. It is a type of public key certificate that is used to prove the validity of a public key. TLS/SSL certificates are used to establish an encrypted connection between a website/server and a browser with what’s known as an “SSL handshake”. This handshake creates a protected connection between the web server and web browser nearly instantaneously every time a user visits a website. Websites secured by a TLS/SSL certificate will display HTTPS and the small padlock icon in the browser address bar.

TLS/SSL certificates are used to protect both the end users’ information while it’s in transfer, and to authenticate the website’s organization identity to ensure users are interacting with legitimate website owners. TLS/SSL certificates are the standard used by all major web browsers to ensure a safer internet experience for users. Websites secured by TLS/SSL certificates are more trusted by internet users because they encrypt and protect private information transferred to and from their website. They also represent, or certify, the website’s brand identity.

TLS/SSL certificates are issued by a certificate authority (CA) to certify the ownership of a public key. PKI provides a way for one party to establish the identity of another party using certificates if they both trust a third-party - known as a certificate authority. There are three kinds of certificates, DV, OV, and EV, which offer varying levels of authentication but the same form of industry-standard encryption. The key to selecting the right SSL/TLS certificate is deciding what level of authentication is needed.