what is secure connection

What is secure connection?


 

1. What is Extended Validation SSL?


Answer:

Phishing and similar malicious web activities have made the issue of validating the identity of a web site a critical one in today’s web environment. In response to this problem the CA/Browser Forum created the “Extended Validation” SSL standard for high assurance identity certification. This industry standard requires a more sophisticated process of identity authentication than performed for most traditional SSL Certificates, resulting in a higher level of identity assurance for a site secured with an Extended Validation SSL Certificate. Extended Validation SSL Certificates both validate the identity of a web site and provide the protection of data encryption.

The Extended Validation level of identity assurance is demonstrated to the web site visitor through a few highly visible interface attributes in newer, high-security browsers. These new features include a browser address bar that automatically turns green and displays the security status bar with both the organization name listed in the EV Certificate and the name of the Certification Authority without the user needing to “click the padlock.”





2. How will an Extended Validation SSL Certificate enhance my web site?

Answer:

thawte’s SSL Web Server Certificate with EV enables high-security browsers to display the green address bar along with your web site organization’s name and identifies thawte as the Certification Authority, so that site visitors can be confident sharing their sensitive personal information with your organization. Web site visitors are learning to look for the green address bar in their web browsers while shopping online. The green address bar makes it easier than ever for your customers to see that their transactions are secure and you are who you say you are. Because site visitors are alerted to the SSL provider you have chosen to protect their online transactions, it is more important than ever to show your association with an established and reputable SSL provider.

3. Who sees the green address bar and other EV interface features?

Answer:

New high-security browsers visually represent Extended Validation SSL Certificates and their contents in new, more visible manner. The new interface attributes immediately differentiate these new certificates from existing SSL web server certificates to a web site visitor.

Microsoft Internet Explorer 7 (IE7) is the first browser to support Extended Validation SSL. The green address bar interface automatically functions with IE7 running on Windows Vista. IE7 on Windows XP requires a root update to recognize Extended Validation SSL. thawte provides customers EV Upgrader™ (a US $300.00 value) at no additional charge to enable the Extended Validation functionality for all site visitors running IE7 on Windows XP. Without this tool, Windows XP users may not see the new interface features.

Firefox and Opera have announced they will implement Extended Validation SSL functionality in upcoming versions. All older versions of Internet browsers will treat Extended Validation SSL Certificates the same way they would existing SSL Certificates.

4. Who defines Extended Validation SSL and how does it work?

Answer:

The CA/Browser Forum defines the Extended Validation SSL standard, the processes that make up the standard and the method by which new browsers will display an Extended Validation SSL Certificate. thawte, along with several other Certification Authorities, and the leading Internet browser providers are members of the CA/Browser Forum. Certain members of the American Bar Association Information Security Committee have participated in the development of this standard as well.

Any CA offering Extended Validation SSL Certificates must use the CA Browser Forum’s defined extended validation identity assurance process and pass an annual WebTrust audit.

To issue an Extended Validation SSL Certificate, thawte requires confirmation of the legal existence of the organization, the organization’s legal name and that any assumed names are properly registered with an official incorporating entity. thawte will obtain and verify the applicant organization’s registration number, and registered agent’s identity and address. thawte will also verify the applicant organization’s right to use the Domain Name and that the application organization has authorized the issuance of an Extended Validation certificate.

5. Why is Extended Validation SSL being implemented?

Answer:

Malicious and suspicious activity on the web has gradually been eroding user confidence in digital security, especially for online shopping and banking. The best way to combat online fraud is through consumer awareness of how to recognize and avoid fraudulent activities on the web. Improved online identity assurance and improved browser representation of online identities will empower web site visitors to better protect themselves. thawte's commitment to help establish and implement Extended Validation SSL standards, and to being one of the first to offer compliant product lines, underscores our commitment to enabling a secure digital environment for all.

6. Some CAs already offer "High Assurance" certificates. Is this different from Extended Validation SSL Certificates?

Answer:

“High assurance” certificates are not necessarily the same as Extended Validation SSL Certificates. Only certificates defined specifically as Extended Validation SSL Certificates meet the high standards required by the CA/Browser Forum.

7. What is the difference between Extended Validation SSL Certificates and existing SSL Certificates?

Answer:

The identity assurance process for Extended Validation Certificates is standardized and more comprehensive than for many traditional SSL Certificates. Up until now, identity verification processes varied from CA to CA and from certificate to certificate with some being far less stringent than others. The new standards, published by the CA/Browser Forum, must be adhered to by any CA who wishes to offer Extended Validation SSL Certificates and the unique user interface features associated with them. thawte's commitment to establishing and implementing Extended Validation SSL standards, and to being one of the first to offer a compliant product, underscores our commitment to enabling a secure digital environment for all.

8. Who is eligible for an Extended Validation SSL Certificate?

Answer:

Corporations, general partnerships, unincorporated associations, government agencies and sole proprietorships are eligible to receive EV SSL Certificates provided they are listed with an official registration agency in their jurisdiction. Their license, charter or equivalent must be current, active and valid. thawte must be able to confirm the employment and the authority of the person who places the order for the certificate on behalf of the organization. The requesting organization may not be located in a country or be part of an industry identified on a government prohibited list. Individuals and unregistered organizations are currently not eligible for EV SSL Certificates.

9. Where do I get an Extended Validation SSL Certificate?

Answer:

thawte offers SSL Web Server Certificates with EV with the high assurance of Extended Validation identity authentication. These certificates also provide 40-, 56-, 128-, or 256-bit encryption depending on the browser and operating system used by your visitors and the server on which the certificate is installed.

10. Can I upgrade my SGC SuperCert or SSL Web Server Certificate to include Extended Validation?

Answer:

If you have an SSL Web Server Certificate you may upgrade your current certificate through the renewal process. Because the Extended Validation authentication procedure is more complex than the standard certificate authentication procedure, it may take a bit longer than previously to confirm your certificate renewal.

We are working with VeriSign to offer you SGC SSL Certificates with Extended Validation functionality. For more information on VeriSign® Secure Site Pro with EV certificates click here…

11. What additional information do I need to provide in order to apply for an Extended Validation SSL certificate?

Answer:

thawte requires a signed acknowledgement of agreement from the Corporate Contact listed on the order. thawte may also require a company registration document if thawte is unable to confirm the organization’s details through a government database. A legal opinion letter may also be requested to confirm the following details about the organization if thawte is unable to verify this information elsewhere:

1. physical address of place of operation,

2. telephone number,

3. confirmation of exclusive right to use the domain,

4. additional confirmation of the organization’s existence (if less than 3 years old), and

5. verification of the Corporate Contact’s employment

There are alternative methods for authentication and verification if needed. For more information contact a thawte customer service representative through the following URL;
http://www.thawte.com/contact.html

Click here to buy an SSL Web Server Certificate with EV.