With StartCom, you just send them a CSR and they sign it. They don't get access to your key.
StartCom passed an outside audit and is included in most modern browsers by default, indicating that they at least trust StartCom.
They charge for the work they have to do. So, EV and identity validation cost money. Most "domain validated" certs are basically no work, as you can see from the incredibly cheap prices other SSL vendors offer them at.
Actually, the default is for StartCom to generate your private key for you. They do let you generate your own private key and just upload the CSR though.
StartCom passed an outside audit and is included in most modern browsers by default, indicating that they at least trust StartCom.
They charge for the work they have to do. So, EV and identity validation cost money. Most "domain validated" certs are basically no work, as you can see from the incredibly cheap prices other SSL vendors offer them at.