Validating Your SSL Investment
The Importance of Organization Validation (OV)
SSL certificate providers employ different methods for verifying the identities of the organization or individual purchasing SSL certificates. Unfortunately, not all validation processes meet the same standards. And it’s important to understand the difference.
Certificates verified using organization validation (OV) or practices contain the verified name of the entity that controls the website. Certification Authorities (CA) issuing these certificates check with third parties to establish the official name of the organization and where they are located.
Importantly, the CA takes further steps to contact the requesting organization to confirm that they did, indeed, request the certificate and that the requester is authorized to receive the certificate on behalf of the organization. When visiting a website using an Organization Validated certificate, the end-user can use the certificate to verify that they are sending their transaction data to the intended recipient.
The DV Dilemma?
In contrast, Domain Validated certificates are typically verified and issued through automated processes. Human intervention is minimized and organization checks are eliminated — a tactic that supports issuing certificates in a quick, cheap manner.
And as you might guess, a Domain Validated certificate contains no identifying information in the organization name field. Typically, this value just re-states the domain name or simply says “Persona Not Validated.” In other words, although the Domain Validated Certificate supports transaction encryption, the end-user cannot trust the certificate to confirm who is on the other end.
DV verifies that you are on the domain you think you’re on. That’s it. DV certificates do not provide identity assurance and should not be used on any website conducting e-Commerce or online financial transactions.
100 percent of Entrust SSL certificates provide Organization or Extended Validation identity. All of our SSL certificates are intended to provide security, accountability and trust.
Entrust also provides Extended Validation SSL Certificates. Obtaining an Extended Validation SSL certificate requires undergoing a rigorous validation process. EV SSL Certificates provide a higher level of assurance than organization validated certificates, and as such are displayed more prominently in web browsers and can be recognized by their distinctive green bar. Entrust recommends these certs for all sites conducting e-Commerce or online financial transactions.