Securing Your Ecommerce Checkout

Securing Your Ecommerce Checkout

Securing your ecommerce website is a top priority to give customers confidence in purchasing from your store.

You may have payment options such as offsite or onsite payments. If you're using an offsite payment method, such as PayPal, customers are sent to an external site to complete checkout and so security issues are handled by PayPal themselves.

What about if you're using onsite payment methods, what do you need to do to secure the payment page?

The first thing you'll need to do is check your hosting package came with an SSL Certificate. Secure Sockets Layer (SSL) encrypts critical data, such as credit card details, providing security and data integrity for communications over networks such as the Internet.

If your hosting plan came with an SSL certificate then install it or ask your provider to do this for you. Alternately you may need to buy one from any number of providers on the web.

Once set up, your checkout page will be secure and you will then see https:// (“s” meaning secure) instead of the usual http://

I'm still surprised at how many people don't know that the "s" means that a page is secure and data is encrypted!

Customer Confidence

Do make sure you display on your site imagery showing you are using a secure payment gateway. Internet users are well aware of the amount of fraudulent scams that are out there so displaying imagery can really help boost their confidence in your site.

security logos

You can also utilize this SSL certificate to make your login pages secure to guard against hacking.

Another method to encourage confidence in your site is to show testimonials from previous customers, to prove that your payments are secure, your products are of quality and arrive on time.

Security should be at the top of the list when it comes to your ecommerce store, make sure you find organise this at the outset.

Drupal Secure Pages Module

If you're running a Drupal ecommerce store, either Ecommerce or Ubercart, then you'll need the Secure Pages module to redirect the required pages to an SSL version of the page.

Now go get securing your store!


Mel's picture

I'm one of those people who

I'm one of those people who didn't know about the 's' in https, I'll pay attention next time I use a checkout, thanks for the advice.

Si Phoenix's picture

Don't Forget 3D Secure

An important point to add is that now many Merchant Services providers are requiring 3D Secure authentication for certain card transactions, like Maestro.

The redirect to the 3D secure page can lose conversions so its a good idea to warn the customer first, when they enter their credit card details.

Deniel  's picture

Should I use ssl

Should I use ssl certificates with offline payment method? I know customers feel very secure in that way so Should I?

Richard Dewick's picture

Offline payments

Hi Deniel, what I mean by offline payment methods are ones that you get redirected to away from your checkout page, such as PayPal. This way you only take the customers contact details on your site and PayPal takes care of the rest. It is still a good idea to secure your checkout page though.

Phoenix Joel's picture

Increase Conversions

Stats show that very secure and websites that appear to be safe and trust worthy have higher conversion rates, so securing your ecommerce checkout will definitely help!

William's picture

Having secured sites is of

Having secured sites is of utmost importance nowadays as online fraud is lurking almost everywhere. I knew that there were special certificates that worked online as notaries that encrypted the info you sent over the internet but I didn't know _or haven't paid attention at least_ to the "s" in the url. Thanks for teaching us how to work more safely over the web!

Chris's picture

Secured Websites

I think nowadays as the Internet has grown so rapidly there are more and more people trying to scam / hack and therefore believe that secured sites are a must!

I think one of the keys to success with a e-commerce website is offering different payment methods, for example accepting Paypal - as everyone has heard of them and its a reputable company, so customers would feel safe.