LDAPWiki: Extended Validation Certificate

Overview [1]#

Extended Validation Certificate (EV-CERTS) is a Certificate Level Of Assurance issued from a Certificate Authority validates the control of the applicant to use a specific DNS Domain PLUS it conducts a THOROUGH vetting of the Organizational Entity.

Extended Validation Certificate is controlled by the CA-Browser Forum in the "Guidelines For The Issuance And Management Of Extended Validation Certificates"

The issuance process of EV-CERTS is strictly defined in the EV Guidelines, as formally ratified by the Certification Authority Browser Forum forum in 2007, that specify all the steps required for a Certificate Authority before issuing a certificate, and includes:

Verifying the legal, physical and operational existence of the entity
Verifying that the identity of the entity matches official records
Verifying that the entity has exclusive right to use the DNS Domain specified in the EV SSL Certificate
Verifying that the entity has properly authorized the issuance of the EV SSL Certificate

Extended Validation Certificate are available for all types of businesses, including government entities and both incorporated and unincorporated businesses. A second set of guidelines, the EV Audit Guidelines, specify the criteria under which a Certificate Authority needs to be successfully audited before issuing Extended Validation Certificate. The audits are repeated yearly to ensure the integrity of the issuance process.

Browsers and Extended Validation Certificate#

Browsers display is enhanced when using Extended Validation Certificate:[2]

More Information#

There might be more information for this subject on one of the following:

[#1] - What are the different types of SSL Certificates? - based on information obtained 2017-01-23
[#2] - How to Know if a Website is Secure - based on information obtained 2017-01-23
[#2] - Extended Validation - based on information obtained 2019-07-10