OTA Announces 2011 Scorecard
The Online Trust Alliance (OTA) today announced their annual scorecard on security-related matters for a number of companies including members of the Fortune 500, Internet Retailer Top 500 Retailers, The FDIC 100, the top 50 government sites, leading social networking sites and OTA member sites.
You can find the entire scorecard here. It’s interesting to note the year over year growth in adoption of EV SSL Certificates. In some groups, adoption was up 289% Y/Y and the overall average for all of the groups was a commendable 68%.
This helps to support the notion that the industry is really starting to adopt EV SSL as the latest standard in SSL security. We’ve seen instances where agencies like the IRS have made strong recommendations for e-filing sites using EV SSL during tax season, as well as it being a very effective defense against a variety of attacks such as SSL Strip and the recently announced Firesheep.
While 2010 witnessed a rather rapid adoption of EV SSL in certain verticals, the OTA does report that a lot of the top sites reviewed in this scorecard have failed to make the Honor Roll (to make Honor Roll a comapny must use both EV SSL and one or more forms of email authentication). The percentage of businesses that were reviewed making the honor roll was 26%---there is a lot more room for growth here.