There is a chain of valid certificate issuers. Browsers such as IE - actually, deep in Windows itself, and Mac, etc. etc. - there is a list of valid certificate-issuing authorities. Only certificates issued by these authorities will certify as valid. To get a valid certificate for your website or other server (i.e. mail server) you need to buy it from one of these authorities, and provide some decent documentation to prove you own the website name. So if I am the registered owner of “mycrazywebsite.com” domain, I can apply for a certificate that proves it. I then install that certificate in my website.
Most websites now use HTTPS not HTTP. the “S” stands for “secure” meaning he website will encrypt data to and form the site. It does this by handshaking with the other end, and providing a certificate which allows both ends to communicate encrypted so nobody eavesdropping on the data going by can figure out the contents. This is particularly important for commerce websites - banks, online stores, etc.- or any website who asks you to send them a password to get on. Commercial websites want you to have confidence that you are dealing with the correct people, not some spoofing site. Buried in the certificate is the name of the website it is meant for.
However, if you are just running an amateur site, catvideosbyJane.com, or it’s an company internal website like contosomail.com, you probably don’t need to spend $100 or so a year to buy a commercial certificate jus to assure visitors you are who you say you are. The web author can generate a “self-signed” certificate and use that for secure taffic. All the warning means is that “whoa! This isn’t certified by one of the official certificate issuers to be correct. You have to take the website’s word for it, nobody has vetted the name.” If you are sure this is where you meant to go - then it is OK.
Note the assorted issues arising from the name buried in the certificate:
The security certificate presented by this website was issued for a different website’s address. It is not unusual for one website to simply redirect you to another website, something like if you go to Acura.com maybe it redirects you to Honda.com (it doesn’t, but this is an example of a redirect could be legit). It could also be that a legit site has been hacked and redirected you to another site to rip you off. just check that the address in the bar represents where you wanted to go.
The security certificate presented by this website was not issued by a trusted certificate authority. as I discuss above the certificate is not paid for, it is self-signed. This maybe because the site was not worth the cost of a certificate. be wary of commercial sites that deal with a greater public, and yet do not have a signed certificate.
Certificate expired. Once in a while the webmaster will forget to renew the certificate.
So it’s just a warning to be wary. Ask yourself why a site should have a certificate error. if it’s a commercial site, be sure you are on, for example, wellsfargo.com not wellfrago.com