2

Is it possible to get the address of the business that a SSL certificate is registered to?

I know you can get the City and State directly from the certificate.

I ask because I'm thinking about getting an SSL certificate, but I only have my home address to use.

MDMarra
  • 100,183
  • 32
  • 195
  • 326
James T
  • 224
  • 2
  • 11
  • 4
    Purchasing an SSL certificate isn't limited to business entities. Anyone with the means to purchase one (whether it be a business or an individual) can purchase one, so I'm confused as to why your home address is relevant in this case. – joeqwerty Feb 20 '12 at 19:51

2 Answers2

7

A basic SSL provides an encrypted connection only. I has no actual identity information. Network Solutions sells these as "Express" certificates. Most SSL provides have an equivalent. The name and address provided when purchasing are for billing purposes.

Craig
  • 1,354
  • 6
  • 14
  • 1
    I wouldn't say that it has *no* identity information. It certainly contains city and state as well as organization. – MDMarra Feb 20 '12 at 19:27
  • 2
    The express certs I have purchased DO NOT show city/state – Craig Feb 20 '12 at 19:28
  • Can you provide a link to a site that has one installed? – MDMarra Feb 20 '12 at 19:29
  • www.paydaytree.com – Craig Feb 20 '12 at 19:30
  • 1
    Interesting to learn. Have an upvote. :) – MDMarra Feb 20 '12 at 19:32
  • I'm not sure how I feel about SSL certs for business entities without at least locality in them (yes, they are technically valid: Really all you *need* is the CN and a trust chain, and yes it's easy to just put in the "right" locality in a faked cert, but still - bleh...) – voretaq7 Feb 20 '12 at 20:14
  • We use them to provide a secure connection between the browser and our server. NOT as a form of system identity. – Craig Feb 20 '12 at 20:31
1

It's not a field that's required for the cert, and therefor is not included in the cert. Some are issued with City, State, and Organization, but address is never a requirement.

Any address info collected by a vendor for a standard SSL certificate should strictly be for billing and hopefully won't be made public. It certainly won't be included in the details of your cert.

MDMarra
  • 100,183
  • 32
  • 195
  • 326