Educause Security Discussion mailing list archives
Extended Validation SSL/TLS Certificates
From: Mike Wiseman <mike.wiseman () UTORONTO CA>
Date: Tue, 29 Apr 2008 15:08:51 -0400
Is anyone using or planning to use EV SSL/TLS server certs? We're considering their use for targeted high-visibility services such as webmail and central web sign-on with the thought of adding another layer of protection against spear phishing. One of the things I don't like about them is that they're too expensive to deploy to all current SSL/TLS internal sites thus users may be confused by the two-tier protection: some sites showing the green bar, most others showing a white bar in the browser chrome. We hope to see whether users will take to the idea that some sites have higher assurance than others. Mike Mike Wiseman Computing and Networking Services University of Toronto
Current thread:
- Extended Validation SSL/TLS Certificates Mike Wiseman (Apr 29)
- <Possible follow-ups>
- Re: Extended Validation SSL/TLS Certificates Brian Epstein (May 04)