News

Eligibility Expands for IE Web Certificate

Smaller and newer businesses will now be able to get security certificates that trigger a green address bar in Microsoft browsers under new rules ratified this week.

Smaller and newer businesses will now be able to get security certificates that trigger a green address bar in Microsoft browsers under new rules ratified this week.

Since they became available late last year, the so-called extended-validation certificates have generally been available only to larger companies -- those listed in public databases.

Security companies and browser manufacturers through the Certification Authority/Browser Forum have been hammering out procedures for general partnerships, unincorporated associations, sole proprietorships and individuals as well.

"There are some new steps introduced," said Markellos Diorinos, a product manager with Microsoft Corp. "They need face-to-face validation."

New guidelines call for smaller merchants to produce documents such as a driver's license or a bank statement, according to certificate issuer Comodo. A lawyer or a notary would have to review those documents.

The extended-validation, or EV, system is designed partly to address the rise of "phishing" scams in which Web sites try to mimic legitimate businesses to steal passwords and other sensitive data.

Although certificate issuers used to always check to make sure sites were really what they said they were, newer competitors have tried to cut costs by checking only that the site owns the domain name. Normal certificates may still be issued that way, but the EV ones are reserved only for merchants that pass more rigorous screening.

Microsoft's Internet Explorer 7 browser already recognizes EV certificates. Developers of the Firefox and Opera browsers are also planning similar features.

The appearance of the green bar in IE7 should tell visitors that the merchant does exist and operates at the location it says it does, though it doesn't validate its quality of service.

Featured

  • Office 365 Attack Simulator Now Supports Attachments

    The Attack Simulator in Office 365 tool has been updated and now has the ability to include message attachments in targeted campaigns, according to a Friday Microsoft announcement.

  • How To Disable Touch Input in Windows 10

    When the touchscreen on your Windows 10 laptop goes bad, there's no reason to throw that baby out with the bath water.

  • Microsoft Previews Windows VM Authentications via Azure Active Directory

    Microsoft on Thursday announced a preview of remote authentications into Windows-based Azure virtual machines (VMs) using Azure AD credentials.

  • Windows Server 20H1 Getting Smaller Containers and Faster PowerShell

    Microsoft is promising to deliver a smaller container size and improved PowerShell performance with its next release of Windows Server.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.