wildcard certificate

A wildcard certificate is a digital certificate that is applied to a domain and all its subdomains.

Wildcard notation consists of an asterisk and a period before the domain name. Secure Sockets Layer (SSL) certificates often use wildcards to extend SSL encryption to subdomains. A conventional SSL certificate works on a single domain, for example A wildcard certificate for * will also protect,,, etc.

Extending a single certificate to subdomains rather than purchasing separate certificates can save money and make administration easier. The disadvantage, however, is that if a certificate has to be revoked on one subdomain, it has to be revoked on all the others as well. If a subdomain like is compromised, for example, so are the mail and vpn subdomains. Purchasing separate certificates may cost a bit more and require more adminstration, but it also ensures that each subdomain is individually protected.

See also: SSL VPN

This was last updated in November 2010

Dig Deeper on Network security

Enterprise Desktop
Cloud Computing