SIGNIFLOW

Discover our signature platform: sign and request signature for your PDFs in a fex clicks!

JOIN OUR AFFILIATE NETWORK

Join our affiliate network
and become a local SSL expert
Learn more about our program

PRODUCTS TO DISCOVER

SSL certificates Invoice signature eIDAS certificates Signature software

Menu
picture of tbs certificates
picture of tbs certificates
Certificates
ALL CERTIFICATES
SSL Extended Validation SSL Standard RGS certificates eIDAS certificates SSL ECC SSL wildcard SSL Multiple sites / SAN Quick and Dirty SSL
Specific certificates VMC certificates
E-signature Strong authentication S/MIME certificates
Test certificates PKI Solutions Trust Seals
SigniFlow: the platform to sign and request signature for your documents
Signature software
Our products range
TBS X509 DigiCert Thawte Sectigo GlobalSign GeoTrust Certigna ChamberSign SigniFlow Harica
Partners
Client login Customer accounts Open an account
Support
FAQ SHA256: Browsers' compatibility ECC: Browsers' compatibility
Focus
Invoices dematerialization
We now provide solutions compliant with RGS** and eIDAS qualified standards for invoices signature and time stamping. Further information


20131115 - ECC certificates swell the ranks of our range of products

In November 2013, new kind of certificates -using ECC cryptographic method - have entered TBS INTERNET SSL certificates range of products.

What is ECC?

ECC - standing for Elliptic Curve Cryptography - is a cryptographic method used for keys and certificates generation.

What are the differences with RSA?

Based on a different cryptographic method, ECC provides keys way shorter than RSA ones for an equivalent security level.

Which products are concerned?

ECC option is, for now, available on TBS X509 and Sectigo SHA256 server products and on PRO certificate from Symantec.

These products are pointed on our differents website by the graphic element:

ECC option



Note: Sectigo EV (Extended Validation) products have a full ECC certification chain, meaning that certificate, intermediate certificates and root certificate are all in ECC format. Non-EV product have a crossed certification chain and are attached to a RSA chain.

Consequences: ECC is not well deployed on browsers. A crossed certification chain helps improve this kind of certificate's recognition rate. Full ECC products are less recognized than their RSA counterparts.

Moreover, even if the certificate is recognized by the brower (root present), it exists the possibility that the browser may not be compatible with th technology.

Those 2 elements must be taken into account when abording the subject of recognition / compatibility.

What about the tariffs?

ECC option is totally free. When placing your certificate request, just provide a CSR in ECC format. The system automatically detect the key format to issue a corresponding certificate.

I have a SHA256 or PRO certificate, can I get its ECC equivalent (and conversely)?

Several scenarii:

  • TBS X509 and Sectigo Non-EV products: Yes, request a free reissuance via your certificate status page and provide an ECC CSR.

  • Sectigo EV products: No, the certification chain being a full ECC one, it is not possible to swing between ECC and RSA via reissuance.

  • Symantec products: Yes, if your certificate has been issued after April 2, 2013.

Additional information