Video Screencast Help

Website Security Solutions

Showing posts tagged with Extended Validation SSL
Showing posts in English
Tim Callan | 17 Aug 2010 | 0 comments

A recent New York Times article discusses the concerns held by online civil rights groups that oppressive governments around the world might work with certificate authorities (CAs) through either coercion or willing partnership to compromise the integrity of private and/or corporate online communications.

The article points out that proliferation of CAs around the world means that the world's browser and device vendors have given the tremendous responsibility of issuing certificates to a very broad variety of organizations. Given that the conduct of these CAs is not policed to any effective degree, unscrupulous CAs could easily allow governments to decrypt communications, use compromised information for a variety of political purposes and not face any retribution.

Such concerns highlight the need for individuals and organizations to look to longstanding...

Tim Callan | 10 Jun 2010 | 0 comments

It's been a while since we had SSL poetry.

Moving west quite a bit from Japan and its haiku all the way to the land of Eire, we have the limerick. In this case an EV SSL limerick, of course.

There once was a man from IT,
Whose customers often would flee,
for their safety concerned.
So his company earned
their trust by deploying EV.

Tim Callan | 16 May 2010 | 2 comments

That's it. You can now enjoy the added protection of Extended Validation SSL on Twitter. 'Nuff said.

Tim Callan | 05 May 2010 | 0 comments

In conjunction with Earth Day we announced a limited-time program whereby VeriSign would plant a tree for each Extended Validation SSL Certificate we sold. I just saw the data for April 22, Earth Day, and our EV registrations were almost double what you would expect for that day. So good work, folks. We'll be planting a lot of trees because of you.

Tim Callan | 23 Apr 2010 | 0 comments

The Online Trust Alliance (OTA) just announced its Online Safety 2010 Honor Roll, on which only 8% of the 1200 analyzed companies made the list. The OTA evaluated these 1200 sites based on their usage of e-mail authentication standards, Extended Validation SSL Certificates, and the presence or absence of malware on their public-facing sites. OTA also reported that more than 26% of the Internet Retailer 500 and top 100 financial services companies have adopted EV SSL Certificates....

Tim Callan | 21 Apr 2010 | 0 comments

Tomorrow is Earth Day, and in celebration VeriSign is kicking off our "Plant a Tree" promotion for EV SSL. Purchase a VeriSign Extended Validation SSL Certificate between Earth Day and May 22nd and you could grow your conversion rates at the same time you help grow new forests.

In honor of Earth Day 2010, VeriSign will plant a tree for every VeriSign EV SSL Certificate purchased between April 22nd and May 22nd. VeriSign has partnered with American Forests, a non-profit that works to protect, restore, and enhance the natural capital of plants and trees.

It's cool because online commerce is fundamentally a green technology. The more we can do our...

Tim Callan | 03 Mar 2010 | 4 comments

It was at the RSA Expo in 2007 that VeriSign officially held a coming out party for Extended Validation SSL. Now I'm at the RSA Expo again, and it's a good time for a milestone check.

Today, more than 20,000 EV SSL Certificates have been deployed worldwide, putting EV SSL into an elite category of ultra-rapidly deployed technologies. Likewise, browser ubiquity is pretty darn high. More than 75% of client systems on the Web use browsers that can display the green address bar. Compatible browsers include IE7 and above, Firefox 3.0 and above (2.5 with downloadable plug in), Safari 3.2 and above, all versions of Chrome, Opera 9.5 and up, Flock, and the iPhone.

Dozens of online businesses have measured the effect of green address bars on their visitors' behavior and have seen...

Tim Callan | 18 Nov 2009 | 1 comment

Mobile devices continue to grow in importance as a platform for doing real business online. You may recall that the iPhone broke the EV glass as the first popular mobile device to specifically call out EV SSL Certificates in the interface. This recent article explains how German bank Postbank is using EV on its iPhone specific site. A Postbank official says,

With the launch of the VeriSign EV SSL Certificates for iBanking on the iPhone, we're taking a huge step forward in our efforts to build trust and reassurance for this fast-growing segment of our customer base.

Tim Callan | 17 Nov 2009 | 2 comments

A researcher has published an exploit that uses the SSL renegotiation attack to compromise Twitter logins. That appears to run counter to earlier assessments that this exploit wasn't aimed at the accounts of individuals accessing sites. So what's going on here, you ask?

This attack does indeed follow the parameters of the attack as previously described. It attaches exploit code to the encrypted stream and indeed cannot decrypt the data going to and from the site. What the inserted exploit code does is take advantage of a vulnerability in Twitter's API that allows it to command Twitter to publish the credentials of the currently active account. And of course the currently active account by definition is the same as the one operated by...