1. Select an authoritative and credible certification body.

2. Select SSL certificate with reliable performance. When purchasing SSL certificates, you need to compare the performance of various aspects. For example, in terms of universality, it is necessary to consider whether the certificate is supported by all browsers and mobile phone operating systems; For example, in terms of security, it is necessary to check whether the SSL certificate uses the latest encryption standard and whether the encryption strength is sufficient.

3. Make sure that SHA 1: SHA 1 algorithm is the most widely used signature algorithm at present, but SHA 1 algorithm may be cracked. According to NIST's security guidelines, Microsoft requires trusted CA institutions to stop issuing SHA 1 certificates from 20 16 1. SHA2: It's more secure, but it doesn't support WindowsXP. SHA2 signature algorithm is more secure than SHA 1 and will gradually replace SHA 1 as the mainstream signature algorithm. However, there are still WindowsXP systems that don't support SHA2 signature algorithm and need to be patched and upgraded by SP3.

4, choose a thoughtful service SSL certificate, at this point, customer service and technical support.

Note: it is recommended that Gworg register and purchase SSL certificates in China, which is authoritative and secure.