In my experience the biggest hurdles to implementing SSL are: advertising networks, dependencies (such as internal systems or APIs) that are incompatible, policy of providers (such as Akamai implementing fees far above the actual cost of SSL), or performance issues.
Cost does not seem to be a major issue for most organizations (or even independent websites). Sure, Symantec and other high profile CAs charge an arm and a leg, but thats all marketing. There are affordable and trusted certs out there for <$10 if you just need a single domain cert, and <$100 for Wildcard and Multidomains.
Cost does not seem to be a major issue for most organizations (or even independent websites). Sure, Symantec and other high profile CAs charge an arm and a leg, but thats all marketing. There are affordable and trusted certs out there for <$10 if you just need a single domain cert, and <$100 for Wildcard and Multidomains.