An Extended Validation SSL Certificate (also known as EV SSL for short) is the highest form of SSL Certificate on the market. While all levels of SSL – Extended Validation (EV), Organization Validated (OV), and Domain Validated (DV) – provide encryption and data integrity, they vary in terms of how much identity verification is involved and how the certificates display in browsers.
Extended Validation Certificate Verification
During verification of an EV SSL Certificate, the owner of the website passes a thorough and globally standardized identity verification process (a set of vetting principles and policies ratified by the CA/Browser forum) to prove exclusive rights to use a domain, confirm its legal, operational and physical existence, and prove the entity has authorized the issuance of the certificate. This verified identity information is included within the certificate, with some pieces, including business name and country, presented directly in the browser window.
The verification process for OV and DV certificates is not as comprehensive, with DV certificates only requiring proof that the website owner could demonstrate administrative control over the domain. OV certificates include some identity information about the site operator, but it is not as extensive as EV and it is not as prominently displayed in the browser. In order to see your company’s identity information, visitors need to view the certificate details.
Extended Validation Certificate UI
Like DV and OV, EV SSL Certificates also activate HTTPS and the padlock in browser address bars, but EV stands out because it presents the name of the verified website owner as well. Prominently displaying the verified company name helps distinguish the site from phishing or impostor sites. The added cost and time spent in verification makes it harder for a phishing website to obtain an EV level certificate, meaning your web visitors can use this (amongst other factors) as an indicator of trust. Visitors can have greater trust that the website is actually run by your company and feel safer conducting communication and financial transactions.
Examples of EV SSL Certificates in Browsers
As mentioned above, a website using an EV SSL Certificate activates highly visible indicators directly on the browser address bar, namely the padlock, HTTPS, and the verified company name and country. These indicators are always changing and evolving as new browser versions are released, so we will aim to update this page regularly with new images.
Website with EV SSL Certificate on Chrome shows padlock, HTTPS, organization name and office location country code in green font.
Website with EV SSL Certificate on IE shows green bar, padlock, HTTPS, organization name and country code.
Website with EV SSL Certificate on Firefox shows padlock, HTTPS, and organization name and country code in green font.
Website with EV SSL Certificate on Safari (both desktop and mobile) shows green padlock and organization name. Clicking the address bar brings up the domain name with HTTPS.
Website with EV SSL Certificate on Microsoft Edge shows green padlock, organization name, and country code. Clicking the address bar brings up the domain name with HTTPS.
Website with EV SSL Certificate on Opera shows green padlock, organization name, and country code. No HTTPS is shown.
Benefits of Using an EV SSL Certificate
Phishing, or imposter, websites continue to be a major threat to legitimate websites and online services. Recently, phishers have started using DV certificates (usually acquired from free SSL service that lack adequate phishing checks) to help their sites look more trustworthy and trick unsuspecting victims into submitting financial or personal information. This is a growing problem and emphasizes the need for verified identities online. Visitors need reasonable assurance of the identity of the business they are dealing with, enough that they can feel safer conducting online transactions.
EV SSL helps combat this issue by bringing the site operator’s verified identity front and center on the website – displaying it directly in address bar.
Who Should Use EV SSL Certificates?
EV SSL Certificates can be used in all applications that require stronger identity assurance and added trust. High profile websites often targeted for phishing attacks, such as major brands, banks or financial institutions, can use EV SSL Certificates for their public facing websites, but any website collecting data, processing logins or online payments can also benefit from displaying their verified brand identity.
How to Buy an Extended Validation (EV) SSL Certificate
You can purchase an EV SSL certificate from GlobalSign using the button below.