Tag Archives: EV

Weakly Guarded Businesses Can Expect Decline in Revenue (Part 2)

April 9, 2014 by Entrust, Inc.     No Comments

Some businesses have to learn the hard way the price paid for weak authentication.

Filed Under: Authentication Tagged With: EV

Phishing with SSL

August 24, 2012 by Bruce Morton     No Comments

I read an article from Netcraft about Phishing on sites using SSL certificates. It reminded me that the industry has been working on anti-phishing for many years. In 2005, the SSL industry created the CA/Browser Forum. One of the issues was to create a new SSL certificate that would fight phishing. The result was the [Read More...]

Understanding SSL

August 7, 2012 by Bruce Morton     No Comments

Just thought I would let you know about a podcast called Sophos Techknow – Understanding SSL. Hopefully there won’t be much new for the regular readers of this blog, but the information may be valuable for those new to the SSL industry. I did want to make note of a few things. The podcasters discuss [Read More...]

All SSL and Digital Certificates Are the Same, Right? Wrong

May 21, 2012 by Dave Rockvam     No Comments

If all digital certificates are the same, why choose anything but the basic certificate? Because all certificates are not the same. Currently, there are three classes of digital certificates as recognized by the CA/Browser Forum: Domain Validated (DV), Organization Validated (OV) and Extended Validated (EV). There is a common misconception that the only difference in [Read More...]

Filed Under: EV SSL, SSL Tagged With: Computer security, dv, EV

EV SSL Market Growing … Where It Counts

May 2, 2011 by Bruce Morton     No Comments

Netcraft recently released a report showing the growth of Extended Validation (EV) SSL certificate market share over the last four years. EV SSL certificates account for only 2.3 percent of all third party-issued certificates according to the Netcraft SSL survey. Organization Validated (OV) and Domain Validated (DV) SSL certificates took up the share of the [Read More...]

Filed Under: EV SSL, Secure Browsing, SSL, SSL Deployment Tagged With: Netcraft

Mozilla to remove iconic Lock Icon

January 4, 2011 by Bruce Morton     No Comments

Although not released yet, the latest betas of Firefox 4.0 indicate that Mozilla has removed the https lock icon from the browser. Different forms of the lock icon have been used since the earliest commercial releases of Netscape and Internet Explorer browsers. The lock icon is currently used in all major desktop browsers:  IE, Firefox, [Read More...]

Filed Under: Secure Browsing Tagged With: Firefox, SSL, visual indicators

SSLPersonas

December 16, 2010 by Bruce Morton     No Comments

  SSLPersonas is a Firefox extension that adds a little color to your secure browsing experience. When browsing an SSL protected web-site, the extension provides in-your-face visual feedback regarding the security of the site via a theme in the Firefox chrome at the top and bottom of the browser interface. The themes are as follows: [Read More...]

Filed Under: EV SSL, Secure Browsing, SSL Tagged With: Firefox, Mixed Content, SSL

Cyber Monday

November 28, 2010 by Bruce Morton     No Comments

Monday, 29 November 2010 is Cyber Monday. What is Cyber Monday you might ask? Personally I had to get my terms straight between Black Friday, Cyber Monday, and Black Monday. Here’s a short refresher: Black Friday is the Friday after the US Thanksgiving holiday when the Christmas holiday shopping season unofficially kicks off. It’s called [Read More...]

Filed Under: EV SSL, Secure Browsing, SSL Tagged With: Firesheep, HTTPS, SSL

SSL Deployment Mistakes

September 21, 2010 by Bruce Morton     1 Comment

In June, Ivan Ristic of Qualys SSL Labs made a presentation at the OWASP AppSec Research 2010 conference called Breaking SSL: Why leave to others what you can do yourself? Ivan contends that “SSL is a rare application security area where we can make things virtually 100% secure, with relatively small effort.”  However, he also [Read More...]

Quality vs. Quantity: SSL Certificate Verification Practices

August 9, 2010 by Bruce Morton     No Comments

VeriSign announced that GeoTrust (a VeriSign subsidiary) SSL certificates are most often used to secure the most-visited web sites. This was established by cross-referencing the Alexa 1 Million with the July 2010 Netcraft SSL survey. The results revealed 35,142 unique domains protected by GeoTrust SSL certificates out of approximately 165,000 of the Alexa 1 Million [Read More...]

Filed Under: EV SSL, SSL, Technical Tagged With: SSL