Entrust Datacard

EV SSL Certificate

The Value of Extended Validation

server certificates encrypt the sensitive information that was transferred via the channel.

Despite the successful implementation of SSL certificate validation, known as extended validation.

Extended validation, or EV, provides an extra layer of assurance on top of traditional SSL security technology. As with traditional SSL, the new EV SSL certificates are served to a consumer's Web browser using the same level of encryption protocol. The difference is that the organization displaying an EV certificate has gone through a more extensive validation process, giving the consumer visual clues to indicate this extensive validation. This allows the consumer to have greater confidence that they have arrived at the website that they expected.

EV SSL Certificate Requirements

For any domain wishing to enhance the level of authentication provided to online users, Entrust now provides extended validation security services. As part of the new extended validation practice requirements, EV SSL certificate requests require additional steps before they will be issued by Entrust. The online entity itself must be legally verified as well as demonstrate that it is in operation. The domain of the online entity must also provide verification that it has site control; that it is the exclusive owner and operator of that website. The EV SSL certificate issuance process is strict, but it successfully undermines the methods by which phishing attacks are possible since a phisher will not be able to replicate the green URL bar and other visual indicators provided by EV. If the phisher was able to obtain an EV certificate, the certification authority issuing the certificate would have ample information with which to locate the phisher. Authentication information obtained and confirmed by Entrust is contained in the EV SSL certificate, thus ensuring that the certificate holder (the Web site domain) presenting the certificate to a client computer is who they claim to be.

Entrust EV SSL Certificates and the Latest Web Browsers

Entrust EV SSL certificates offer enhanced visual clues to assist users in recognizing when security is enabled on a Web site. The visual clues have been proven to impact consumers at a greater level than traditional SSL certificates, which, in turn, contributes to the overall sense of business security, integrity and legitimacy felt by these consumers as they visit the Web site. To indicate that security is enabled, EV SSL certificates still utilize the traditional gold padlock and the URL conversion from http:\\ (standard) to https:\\ (secure). However, the installation of an EV SSL certificate will also activate a color change in the URL address bar of a browser window, changing the bar to a green highlighted color. This feature is only available in the latest version of most browsers: if your SSL-enabled Web servers issue EV SSL certificates, the client's computer must have a current browser version - like Microsoft Internet Explorer Version 7 (IE 7), Mozilla Firefox 3 or Opera 9.5 - to recognize the EV SSL certificate when presented. When the user's browser is an older version, the EV SSL certificate acts in the same way that standard SSL does. Most major browsers have upgraded their designs in support of extended verification and the visual clues it offers when EV SSL certificates are in use. As a result, more and more consumers will be looking for the enhanced visual clues that Entrust EV SSL certificates offer, making it increasing important for e-commerce sites to incorporate extended validation security practices to remain not only competitive, but legitimate in the online community.

Related Links