An Extended Validation SSL Certificate (also known as EV SSL for short) is the highest form of SSL Certificate on the market. While all levels of SSL – Extended Validation (EV), Organization Validated (OV), and Domain Validated (DV) – provide encryption and data integrity, they vary in terms of how much identity verification is involved.
Extended Validation Certificate Verification
During verification of an EV SSL Certificate, the owner of the website passes a thorough and globally standardized identity verification process (a set of vetting principles and policies ratified by the CA/Browser forum) to prove exclusive rights to use a domain, confirm its legal, operational and physical existence, and prove the entity has authorized the issuance of the certificate. This verified identity information is included within the certificate.
The verification process for OV and DV certificates is not as comprehensive, with DV certificates only requiring proof that the website owner could demonstrate administrative control over the domain. OV certificates include some identity information about the site operator, but it is not as extensive as EV. In order to see your company’s identity information, visitors need to view the certificate details.
Extended Validation Certificate UI
Like DV and OV, EV SSL Certificates also activate HTTPS and the now gray padlock in browser address bars. The added cost and time spent in verification makes it harder for a phishing website to obtain an EV level certificate, meaning your web visitors can use this (amongst other factors) as an indicator of trust. Visitors can have greater trust that the website is actually run by your company and feel safer conducting communication and financial transactions.
Benefits of Using an EV SSL Certificate
Phishing, or imposter, websites continue to be a major threat to legitimate websites and online services. Recently, phishers have started using DV certificates (usually acquired from free SSL service that lack adequate phishing checks) to help their sites look more trustworthy and trick unsuspecting victims into submitting financial or personal information. This is a growing problem and emphasizes the need for verified identities online. Visitors need reasonable assurance of the identity of the business they are dealing with, enough that they can feel safer conducting online transactions.
EV SSL helps combat this issue by bringing the site operator’s verified identity front and center on the website – displaying it directly in the certificate.
Who Should Use EV SSL Certificates?
EV SSL Certificates can be used in all applications that require stronger identity assurance and added trust. High profile websites often targeted for phishing attacks, such as major brands, banks or financial institutions, can use EV SSL Certificates for their public facing websites, but any website collecting data, processing logins or online payments can also benefit from displaying their verified brand identity.
How to Buy an Extended Validation (EV) SSL Certificate
You can purchase an EV SSL certificate from GlobalSign using the button below.