What is the technical difference between SSL and EV SSL certificates?

Asked

Viewed 496 times

6

I am in the implementation phase of the Cielo API on my website. On the integration site there are two types of certificatesat that link, EV SSL, and SSL.

Honestly I am dealing with certificate for the first time, I know the SSL but I did not understand the technical difference between the two, only the difference between the price that is astronomical.

2 answers

4


The difference between the two is a bureaucratic issue.

Both provide virtually the same level of security against electronic attacks. What the EV gives the most is a guarantee that the entity that issues the certificate (i.e.: Godaddy, Digicert etc.) actually investigated the company that purchased the certificate to ensure that it is a legitimate and reputable entity.

In other words, EV SSL is an SSL combined with a "good background certificate".

The research criteria shall be defined by CA/Browser Forum, a consortium of certification authorities. Currently, to achieve an EV SLL, you need to prove the following:

  • That your domain is owned by an individual or legal entity, with physical address (of the person, not of the server board) known. I believe this requires at least one interview, as the related Wiki says they seek to establish their "physical and operational presence";
  • Ensure that the above natural or legal person is the sole owner and controller of the domain that will receive the certificate;
  • Ensure the identity of all persons who have the domain owner’s authorization to represent it.

As you can see, this is a very high and costly level of assessment. But this gives a guarantee to users that the owner of the site is a fair person and that everyone knows where he lives, not hackovisky in a Siberian basement trying to steal his credit card number.

And finally, I just... To demonstrate the highest security of EV SSL sites, current browsers paint some parts of the address bar green - and for accessibility for colorblind, they also often display a padlock and the word "safe".

  • 1

    Hackovisky in a Siberian basement. kkkkkkkkkk

  • Now I understand the difference ! Perfect answer, thank you.

3

Source

Extended Validation (EV) is the highest class of SSL Certificate available. Although it uses the same powerful encryption as other Ssls, to have it takes a full check of the applicant’s business. What you get is a high visibility green address bar that makes visitors feel safe instantly. If you accept online payments, EV is your best bet.

The difference

The first example is a normal SSL certificate, which means it is a valid certificate issued by a trusted Certification Authority, but there has been no extended validation from the domain owner/site. This may mean that the certificate claims to be from Foo Inc., but CA did not verify that the person/entity that applied for the certificate was actually Foo Inc. when they issued the certificate.

The second example is an SSL Extended Validation Certificate. This type of certificate does extended validation where CA checks the physical address and other details of Foo Inc. before issuing the certificate. In the end, this serves to give more security to the end user than the site owner / domain is in fact the company Foo Inc.

Source

In addition the bar will be with that green that generates a feeling of "super safe"

inserir a descrição da imagem aqui

Here’s a reply well-detailed:

  • Bro... IE tries, tries and tries but can’t help being the worst navigator at all. In addition to positioning the security information (outside the color) where the user will not read, still puts so that does not stand out from the rest of the symbols (reload, stop etc). </vent>

  • 1

    Answer 10/10 also, thank you !

  • 1

    @Renan IE is rubbish in everything... The merd* is what is standard in windows, so it has its relevance there...

Browser other questions tagged

You are not signed in. Login or sign up in order to post.