AffirmTrust Extended Validation (EV SSL)
Article Number: 000071017
What is an EV SSL certificate?
Delivers the highest level of consumer trust through the strictest authentication standards of any SSL certificate. Extended Validation verification guidelines, created by an independent body, require issuing CAs to obtain and verify multiple pieces of identifying information about the Organization and Organizational Contact listed in the enrollment. EV Certificates enable consumers to easily understand that they are on the correct web site through visual cues, including the very obvious green bar that shows up in the browser. For Extended Validation vetting guidelines, refer to the following CA/Browser Forum topic: Overview of the Extended Validation SSL Certificate Vetting Process.
Are non-EV SSL certificates still sufficient for securing online transactions?
How do AffirmTrust EV certificates increase consumer confidence?
Should I switch to AffirmTrust EV certificates?
What is the CA/Browser Forum?
What is the EV certificate vetting process?
Does the AffirmTrust EV certificate show the green address bar?
How do browsers respond when they visit a website with an invalid certificate?
Can I get free reissues of my EV certificates?
Who can purchase a AffirmTrust EV certificate?
Can I upgrade my existing SSL certificates to an AffirmTrust EV certificates?
From a cryptographic security perspective, yes, non-EV SSL certificates still result in encrypted SSL sessions. However, the greatest threat to online transactions is not cryptographic in nature – it is fraudulent web sites luring users with phishing attacks. Phishing uses social engineering and counts on a consumer’s inability to discern between trustworthy sites and imposter sites.
The EV initiative is the result of the industry realizing that there needs to be a more readily-identifiable for users to know they are on a valid site. From a usability perspective, non-EV certificates have decreasing effectiveness, as consumers adopt new browsers and come to expect the strong trust indicators provided by EV SSL certificates while conducting transactions.
With online fraud on the rise and phishing becoming a common occurrence, consumers are concerned with identity theft and would like increased confidence in the sites they use to perform transactions online. If consumers feel the site is not trusted and their personal information is unprotected, they may leave the site and take their business to another vendor.
AffirmTrust EV certificates help to increase consumer confidence by displaying prominent and consistent trust indicators while consumers are conducting online transactions. When a website has a AffirmTrust EV certificate installed:
- A lock appears in the address bar of the browser
- The address bar turns green and displays the identity of the site.
- You can click the lock to view information about the server’s SSL certificate.
If you are operating a website that conducts e-commerce transactions or if you collect sensitive or private information, you should consider switching to AffirmTrust EV certificates.
The CA/Browser Forum is a group of Certification Authority service providers, web browser manufacturers, and other industry participants that work together to look at ways to reduce the threat of phishing and other internet attacks.
AffirmTrust actively works in this group and strongly supports its work.
As defined by the CA Browser (CAB) Forum guidelines, the Extended Validation vetting process establishes the legitimacy of an organization within a specific jurisdiction of incorporation. It also clearly identifies the organization’s principal place of business through a rigorous and stringent set of well-defined validation processes. The process encompasses authentication of the organization’s domain ownership rights as well as contractually binding the organization to a subscriber agreement, which benefits relying parties and strengthens the security of the Internet as a whole.
The use of an EV certificate will turn the browser address bar green in all browsers that support the EV standard, including Internet Explorer, Firefox, Opera, Chrome, and Safari.
Internet Explorer 7 requires that the phishing filter be turned on in order for the address bar to turn green.
In most browsers, a very apparent red address bar will appear, indicating that you may have accessed a known phishing site or that the certificate is not valid in some way. A red alert blocks immediate access to reported phishing sites, although users can proceed to the site if they wish.
Internet Explorer includes prominent warnings to users and will recommend users not visit the page. If the user ignores the warnings and continues the address bar turns red and red warning ‘security badges’ appear.
Absolutely. This can all be done easily through the AffirmTrust console.
A broad range of business entities, as per rigid guidelines, are able to purchase an EV certificate:
Private Organization: A non-governmental legal entity (whether ownership interests are privately held or publicly traded) whose existence was created by a filing with (or an act of) the Incorporating Agency in its Jurisdiction of Incorporation.
Government Entity: A government-operated legal entity, agency, department, ministry, or similar element of the government of a country, or political subdivision within such country (such as a state, province, city, county, etc.).
Business Entity: Any entity that is neither a Private Organization nor a government entity. Examples include general partnerships, unincorporated associations, and sole proprietorships.
Yes. With some additional effort (as mandated under the EV guidelines), your organization can deploy EV certificates to your online businesses and enjoy the increased confidence they bring to end users.
Hours of Operation:
Sunday 8PM ET to Friday 8PM ET