3

Beside the pricing what factor should I cosinder when buying a code signing certificate.

Per year in Comodo is about $100 , In Goddady about $200 and in Verisign is about $500

Why this high difference? What criteria should I have besides the price?

Why I shouldn't buy comodo certs? http://codesigning.ksoftware.net

MadHatter
  • 78,442
  • 20
  • 178
  • 229
Ricardo Polo Jaramillo
  • 2,039
  • 1
  • 18
  • 35
  • Not all code signing certificates are suitable for all purposes. For example, they don't all support Windows kernel-mode code signing which is needed to release drivers that will run on 64-bit Windows. – David Schwartz May 15 '12 at 06:14
  • Related: http://serverfault.com/questions/82039/difference-between-ssl-products and http://webmasters.stackexchange.com/questions/372/are-the-different-types-of-ssl-certificates-a-bit-of-a-scam – Mark Henderson May 15 '12 at 09:02

1 Answers1

22

Well, when considering buying mathematical multiplication from one of the many mathematical extortion services, since you can pretty well trust that any of these guys actually have computers capable of multiplying numbers, so you have to go on the more intangible services they are offering.

If you look at comodo.com, you can see they can't really tell what they want to offer you. If you stay for a while, they will show you pictures of a father that is dissapointed in his son, racks of servers that seem to be turned off, their, CEO that is trying to hide the fact the he is psyched about how much money he is extorting you for, etc..

If you go to the verisign website, you will know that they mean serious business about multiplying numbers together for you. You might see them advertising with the ubiquitous curly brown haired woman, but she won't be laughing at salad.

You might choose godaddy if you feel like these other number mutiplication providers aren't providing you with enough advertising during the checkout process, of if you think that seeing semi undressed photos of Danica Patrick is important to your number multiplying service provider experience.

With an https website, there might be other factors like "do I want to turn their url bars green and shit" which will cost you, of course. because it like turns green and shit. Or "do I want all of *.example.com" to work. Its not like the multiplying of numbers costs them more to do because there was a *. But shit, *s are awesome, you should be willing to pay as much as 10 times a much for one of those certificates. Multiplying with numbers when * is involved is just awesome.

If you are needing to support clients which are using like really old software from before they supported chained certificates, then you might need to buy a certificate from one of the big boys like verisign. But we'd be talking OLD, like "Michael Jackson before plastic surgery" kind of old clients.

Otherwise, you just need some numbers multiplied together, just trust that pretty much anyone that has wedged themselves into the extortion racket is able to actually multiply numbers. Perhaps to stop this racket, contribute to projects like monkeysphere, which try to put this simple mutiplication back into our own hands.

stew
  • 9,263
  • 1
  • 28
  • 43
  • 3
    Thanks for making my morning :) The whole certs industry is hopelessly screwed, I remember myself looking for differences between web SSL certificates and all I've seen in specs was "our certificates are hottest certificates ever", (while nobody cares to mention the real differences). – Sandman4 May 15 '12 at 06:25
  • 4
    I must say that this is one of the best answers I've read on here in a while! +1! – xstnc May 15 '12 at 06:26
  • Hilarious answer -- I stop in to read it for a laugh every now and then. – ctc Nov 12 '15 at 05:47