« Recent Gartner research on lost e-commerce income due to security concerns | Main | "Online Spending Tops $100 billion in 2006" »

Larry Seltzer on Extended Validation

Larry Seltzer of eWeek has these things to say about Extended Validation SSL. In many ways this article is less about the actual Extended Validation SSL Certificates themselves than about the debate surrounding this new certificate type. For example, Larry's opening sentence reads,


"It seems like every time people get together to do something about a security problem, other people get together to whine about it. "

Larry takes a fair and balanced view of the EV SSL initiative from the pragmatic perspective of improving the online world's overall security profile in actionable, practical ways. That has been the viewpoint of the members of the CA/Browser Forum from the beginning. In particular I like the calm, reasonable, non-hysterical tenor of Larry's article. Here's someone who is looking at the actual facts of the situation and analyzing it reasonably. We could use more of that.

As you might imagine, I've been keeping an eye on the press and online dialog about Extended Validation SSL Certificates. I see a great deal of false assumptions about Extended Validation, how it works, and what it does. I hope in the next few weeks to pull out some of the repeated themes and highlight them, along with explanations of what actually happens. I'll seek to take a page from Larry Seltzer's book and focus on fact and sensibility to lead this dialog forward.

Posted by Tim Callan on January 5, 2007 9:29 AM

Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)


ABOUT SSL CERTIFICATES

Search


Categories

Browsers | Firefox | Internet Explorer 7 | Internet Explorer 8 | Opera | Safari | Cart whisperer | Code signing | Debian | Encryption strength | Events | Extended Validation SSL | GeoTrust | Malware | Phishing | Recommended sites | Resellers | Revocation | Security seals | Unprotected Web forms | VeriSign Identity Protection | Windows Vista | CardSpace | poetry |

Archives

July 2008
June 2008
May 2008
April 2008
March 2008
February 2008
January 2008
December 2007
November 2007
October 2007
September 2007
August 2007
July 2007
June 2007
May 2007
April 2007
March 2007
February 2007
January 2007
December 2006
November 2006
October 2006
September 2006
August 2006
July 2006
June 2006
May 2006
April 2006
March 2006

Recent Posts

Six new real-world measurements of EV's effectiveness (plus one more)
More widespread EV deployment on JP Morgan Chase
Tim's in Japan
Lotta discussion around DNS flaws right now
VeriSign extends free reissuance policy
Aetna goes live with EV SSL
The list of EV compatible browsers expands considerably
Greetings from the AOTA Summit
See me speak at Discover YouTube
Massive Japanese EV banking deployment

Comments

We encourage comments and look forward to hearing from you. All comments posted to this blog will be moderated. Please note that VeriSign may, in our sole discretion, remove comments if they are off topic or inappropriate.
Powered by
Movable Type 4.12
Disclaimer: Opinions expressed here and in any corresponding comments are the personal opinions of the original authors, not of VeriSign.
VeriSign Legal Notices