SSL to protect the enterprise network: Why EV?

SSL certificates with Extended Validation provide a higher level of confidence and reliability than simple DV certificates with domain verification only. The latter do not contain any information about the owner in the “Company Name”, and although they are technically support encryption, the end user cannot fully trust such an SSL certificate because they do not know who really stay at the end of the channel data transmission. Simple SSL certificate can get anyone – and scammers too.

evgreen

At the same time, an extended review suggests that the CA will determine the legal personality of the customer, physical existence and functioning of the company, before issue EV SSL certificate. During the extended verification CA checks:

  • the legal right of customer to use domain
  • authority for SSL client certificate request
  • physical existence and legal status of the customer
  • compliance with company customer official records in the state register of legal entities

EV certificate may be issued only after verification of the information for the last 13 months, which means that the CA must always have a current commercial data about the customer. This reduces the risks when changing the domain owner.

 

Posted in Validation, What is an SSL-Certificate Tagged with: , , , ,

All about SSL

This site is dedicated to SSL-certificates. You will learn what is an SSL certificate, how to issue and reissue it. FAQ SSL will be useful for both novices and pros. SSL Knowledgebase contains sections on validation, trust logo, vulnerabilities, SSL-certificates differences by type (Wildcard, EV, DV, etc.), as well as many other things.