Video Screencast Help
Search Video Help Close Back
to help

Website Security Solutions

Showing posts tagged with Extended Validation SSL
Showing posts in English
Actually, I forgot about GE Money Bank
Tim Callan | 18 Dec 2012 | 0 comments

In my posting from earlier today, I stated that three of the world's four largest businesses use EV SSL. Well, I'm wrong. You see, #2 on the Forbes list is GE. GE is the owner of GE Money Bank, a significant worldwide bank without a big footprint in the US. And of course, GE Money Bank has EV. So that makes it the world's four largest companies that protect their customers with EV SSL.

Here the inevitable bias of one's own home geography comes into play. I apologize to my neighbors in other parts of the world for forgetting about GE Money. It is a bank that matters to a lot of people, and it certainly is...

Read more
Bank of America deploys Extended Validation SSL
Tim Callan | 18 Dec 2012 | 0 comments

Bank of America, the world's third largest company has deployed EV SSL on its personal banking site. And you may have noticed that HSBC has done the same thing. That matters because HSBC is the largest company in the world according to Forbes. And JP Morgan Chase is the fourth largest, which is noteworthy considering that Chase also recently deployed EV. So, three of the four largest companies in the world are protecting their customers with Extended Validation SSL. All the way...

Read more
Overview of new Firefox identity features
Tim Callan | 18 Dec 2012 | 0 comments

Mozilla Corporation member Deb Richardson gives us this thorough tour of the new trust indicators in Firefox 3. Apparently Firefox will have a five-tiered color scheme, which goes (in decreasing order of trust):

Green - EV SSL Certificate. Complete idenity known, both domain and organization.
Blue - SSL Certificate. Partial identity know. Domain only.
Gray - no information.
Yellow - invalid certificate. Deb's example includes a self-signed certificate.
Red - phishing site.

The careful observer will notice that this scheme is very similar to (though not identical to) IE7's four-tier system of green, "clear" (white), yellow, and red. The meanings of yellow and red are subtly different....

Read more
Opera beta available with EV support
Tim Callan | 18 Dec 2012 | 0 comments

Beta 2 of Opera 9.5 contains support for Extended Validation SSL.

Read more
HSBC and EV SSL
Tim Callan | 18 Dec 2012 | 0 comments

SSL Blog readers are aware that HSBC has deployed EV SSL on its first direct site. Now this new press release details the bank's plans to roll out EV SSL to all its online banking customers.

Barry Jones, Senior Manager of Group IT Security at HSBC is quoted to say,

As e-criminals grow more sophisticated, financial services leaders like HSBC must always remain a step ahead to ensure the security and trust of our customers. Deploying VeriSign Extended Validation SSL Certificates will allow us to send an instantly recognizable...

Read more
PayPal defines non-EV browsers as "unsafe"
Tim Callan | 18 Dec 2012 | 0 comments

PayPal CISO Michael Barrett, who stirred up a lot of talk recently by advising his customers not to use the Safari browser, has published a white paper on PayPal's comprehensive approach to combatting phishing.

This white paper discusses mutli-factor authentication credentials and contains a whole section on Extended Validation SSL. The paper defines unsafe browsers as "those browsers which do not have support for blocking phishing sites or for Extended Validation Certificates," and goes on to say, "In our view, letting users view the PayPal site on one of these browsers is equal to a car manufacturer allowing drivers to buy one of their vehicles without seatbelts."

The paper adds,

...
Read more
Greetings from Net.Finance
Tim Callan | 18 Dec 2012 | 0 comments

I'm here at Net.Finance in Scottsdale, Arizona. Yesterday I had my roundtable session, which had healthy attendance from business leaders in the banking and finance sectors. It was a rotating, two-hour session, so I found myself in a series of short conversations about Extended Validation SSL. There were a few questions which came up repeatedly. Since those appear to be of more general interest, I'll list some of them here with my reponses.

Read more
VeriSign Secured Seal increases sales by 31%
Tim Callan | 18 Dec 2012 | 0 comments

SSL Blog readers will know that I believe the presence of the VeriSign Secured Seal causes site visitors to be more likely to complete transactions. The idea appeals to my reason. Extensive research indicates that consumers are afraid of online security and that they opt out of transactions in response. The VeriSign Secured Seal is widely recognized as an indicator of premium security on a site. Therefore it follows that site visitors will be less reluctant to proceed when the VeriSign Secured Seal is present.

It's also supported by anecdotal evidence. I can't count the number of people who have told me that they like to see the seal on a site before they put in confidential information. Nor the number of site owners who have told me that they believe their own customers expect to see the seal and reward them for including it.

However, in terms of hard measured results, I have only had a single data point to go...

Read more
Over 100 credit unions use Extended Validation
Tim Callan | 18 Dec 2012 | 0 comments

There's a lot of discussion these days about EV SSL Certificates and how quickly they're penetrating the mainstream. In light of that discussion, it's interesting to note that over 100 credit unions have deployed Extended Validation SSL already.

Read more
New article on Security Matters
Tim Callan | 18 Dec 2012 | 0 comments

I contributed this article on EV and XSS to Security Matters. It's a developed and expanded form of the blog I recently posted on the same subject.

Read more