Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.
Website Security Solutions
Showing posts in English
Tim Callan | 28 Aug 2007 | 1 comment

With the rush for sites to deploy their EV SSL Certificates and get the green address bar, I'm running out of ways to say, "Hey, such-and-such an important site has put up EV." Deploys, goes live with, goes green, I've done them all.

In this case we're going with has, and the Web property is Hotmail. Hotmail, of course, is a Microsoft property and therefore part of the Windows Live/MSN family of sites. And the EV provider Microsoft has chosen to go with is VeriSign.

Tim Callan | 27 Aug 2007 | 0 comments

A recent trend in phishing has been to simulate the letter W by putting a pair of Vs in a row (e.g. bankofthevvest.com as opposed to bankofthewest.com. I don't know if that's why Bank of the West was an early EV SSL adopter, but it may be.

The latest victim is Western Union (or VVestern Union, as the phishers would call it). From what I can tell, Western Union takes security and trust very seriously, so it...

Tim Callan | 25 Aug 2007 | 0 comments

Regular readers of The SSL Blog will remember that DebtHelp.com was the first site apart from VeriSign to implement EV SSL Certificates. You will also remember that DebtHelp measured the results of deploying EV and determined that the green bars had raised conversions by 11% with a 16,000% ROI.

We have now published a full case study on DebtHelp's experience with EV SSL. Be sure to check it out...

Tim Callan | 23 Aug 2007 | 0 comments

One of the common misconceptions I run into is that the only sites targetted by phishers are banks. That hasn't been true for several years. Today we see phishing attacks against lotteries, utilities, search, e-commerce, social networking sites, online greeting cards, and taxes. And now job sites, thanks to the recently published phishing scheme against...

Tim Callan | 22 Aug 2007 | 0 comments

Firefox interface developer Johnathan Nightingale has assembled a bunch of research numbers on SSL in various contexts. He does a good job of reporting sources and even includes some commentary on his opinion on the validity of this research (which, obviously, you should decide if you agree with or not).

Tim Callan | 21 Aug 2007 | 0 comments

We can get so caught up in the EV SSL market adoption that it's easy to forget that more businesses than ever are choosing to display the VeriSign Secured Seal as well in order to demonstrate their high security practices. Today our theme is funmongers. Iconic toy store FAO Schwartz and big-box party supplier Party America are flaunting their VeriSign right on the home page. So don't let anyone tell you that security isn't fun.

Tim Callan | 20 Aug 2007 | 0 comments

This article from Forbes.com on the value of random testing in both physical and retail online environments includes this one line about the VeriSign Secured Seal:

Randomized Web pages have shown online retailers, sometimes after just a few hours, that displaying a VeriSign warranty can generate more sales.

This line comes in a paragraph about A/B split testing provider Offermatica. I wonder if Offermatica can share some of those results with the world. We'd love to see them.

Tim Callan | 17 Aug 2007 | 0 comments

I never got around to blogging this post, but it deserves mention. Apologies for that. Been a little busy.

You may know there's an idea to create a new TLD called .bank. The idea is that it would only be available to banks, making phishing more difficult. In my opinion it's a miniscule incremental improvement (among other problems, major banks aren't going to stop doing business on their old TLDs for many years, if ever, and consumers aren't going to stop trusting these TLDs for the same amount of time). eWeek editor Larry Seltzer rightly points out that if you're going to put indications of trustworthiness into the browser, a nice green bar and an EV SSL Certificate are probably the way to go.

Tim Callan | 13 Aug 2007 | 0 comments

Excuse the newspaper-headline-style pun, but I'm running out of ways to say, "Such and such a humongo site has put EV live." In this case you may already know that online travel leaders such as Travelocity and Opodo along with others like Alaska Airlines have already gone live with EV SSL Certificates.

And you may remember that...