Here are a couple of worthwhile bloggings motivated by the recent Wall Street Journal article on Extended Validation.

Bruce Schneier has a fairly short posting that motivated a lot of discussion in the comments section. I certainly see some good information floating through these comments. At the same time there are some wrong assumptions as well. I'll endeavor to put up a posting soon and set some of these errors straight.

Microsoft responded to this flurry of press activity with a posting of its own on the IEBlog. It's a cogent explanation of the current limitations, their reasons, and the alternatives available to businesses. One quote: "Given the benefits that...

SecurityPark.net offers its security predictions for 2007. Included is a very thoughtful article about the SSL's increasing place in assuring online trust and the return of identity promise. Although this article doesn't mention Extended Validation (EV) SSL Certificates by name, the increased role it predicts for SSL Certificates corresponds very closely to the reasons for and promise of EV.

This morning we issued a press release announcing the availability of our Extended Validation SSL Certificates. This release also announces our exclusive EV Upgrader(TM) technology, the only technology in the world that will automatically enable all Windows XP clients visiting the site with IE7 to display the green address bar when viewing a VeriSign Extended Validation (EV) SSL Certificate. Finally, the release announces our first customer, Overstock.com. Overstock.com is one of the largest online retailers in the world, and we're very pleased to have them on board with VeriSign EV SSL Certificates.

For the past few months I've been enjoying the hell out of Phillip Hallam-Baker's Web Security Blog. Here's a guy who's much smarter than I am and ready to share his considerable online security insights with the public. I never miss it, and I strongly recommend you check it out.