Ever walk into a bank and see a sign that says, "Over 30 days robbery free!"?

Anyway, you could just make up your own graphic and save the money.

And what will your service provider think of regular scans?

Granted, I agree with you, but I am wondering - you know how gullible (for the lack of any better word) the visitors/buyers to e-commerce websites are. A 3rd party certification saying the site is hack-free or whatever the nomenclature is - might convince them no?

Btw: We have no problems with scans, etc. We are our own service provider. :)

Its like the BBBOnline Icon people see on a website, or SquareTrade Seal, does that make a difference? I am sure it does to many? (I'm just guessing here).

Babs.

That bring up a point. Do those certs at the bottom of e-com sites have any real value? I know people that put a lot of effort into getting those. They are all legit ones like BBB and the like. I have even seen the ones like above where they are certified to be hacker free.

That company claims that the seal increases sales. Presumable because people feel more comfortable giving up a credit card number.
We don't use them but a sales rep calls me all the time.

I wonder how deep they go. If I had to guess, they're just running Nessus (or whatever) against your site. If you have custom code, are they making sure there are no vulnerabilities that way?

Sean

We use their service. Although it is not cheap, if you have a big commerce site, it might be worth it to use a service like this and consider it "insurance".

Their daily scans are decent, but if a hacker is really determined, I'm sure they could find a hole which any scanning service would miss. I think the additional value comes when there is a security breach. Their team is very knowledgeable on an individual basis and they can run other server side programs to try to pinpoint the breach.

If you do run into a security breach, the hours of consultation from them on security issues is worth the cost.

As far as conversion, I haven't seen any improvement in conversion. (But we haven't stuck the logo in the best places yet)

Also, if you want CVV response from Amex, you need certification.

I get sales calls to - its been awhile but I think the rep claimed a 15% conversion increase.

I like nessus better, quite frankly it tests to test - which I can understand and which implies throughness. Testing to get a seal that improves conversion - that doesn't nesecarilly beam confidence to me. If I were to go for commercial testing / certification I would be more inclined to use NetCraft or some other service which I felt was providing value rather then flash.

Would posting that on your website be an invitation to a hacker to try to crack your site just to prove it wrong?

I have gotten sales calls from them before, and my main beef with having that logo on my site is that why on earth should I bring the term "hacker" to the attention of someone who would give us their cc info? Better not to even put the thought in their mind, in my opinion.

>>>Better not to even put the thought in their mind, in my opinion.

Good point Jennifer, I never even thought about that.