|
An Extended Validation Certificate (EV) is an X.509 public key certificate issued according to a specific set of identity verification criteria. These criteria require extensive verification of the requesting entity's identity by the certificate authority (CA) before a certificate is issued. Certificates issued by a CA under the EV guidelines contain a subject with x509 OIDs for jurisdictionOfIncorporationCountryName, businessCategory, and serialNumber, with the serialNumber pointing to the ID at the relevant Secretary of State (US) or national business registrar (outside US), as well as a CA-specific policy identifier so that EV-aware software, such as a web browser, can recognize them. EV certificates use the same encryption as domain validated certificates: the difference in security is due to the identity validation process, which is indicated inside the certificate by the policy identifier. EV certificates are mainly presented by web servers to web browsers for use with SSL/TLS connections. The criteria for issuing EV certificates are defined by the (Guidelines for Extended Validation ), currently (as of November 10, 2015) at version 1.5.7. The guidelines〔(Guidelines for Extended Validation Certificates )〕 are produced by the CA/Browser Forum, a voluntary organization whose members include leading CAs and vendors of Internet software, as well as representatives from the legal and audit professions.〔(CA/Browser Forum Members )〕 == History == In 2005 Melih Abdulhayoglu, CEO of the Comodo Group, convened the first meeting of the organization that became the CA/Browser Forum, hoping to improve standards for issuing SSL/TLS certificates.〔http://www.eweek.com/c/a/Security/How-Can-We-Improve-Code-Signing/〕 On June 12, 2007, the CA/Browser Forum officially ratified the first version of the Extended Validation (EV) SSL Guidelines, which took effect immediately. The formal approval successfully brought to a close more than two years of effort, and provided the infrastructure for trusted Web site identity on the Internet. Then, in April 2008, the Forum announced version 1.1 of the Guidelines, building on the practical experience of its member CAs and Relying-Party Application Software Suppliers gained in the months since the first version was approved for use. 抄文引用元・出典: フリー百科事典『 ウィキペディア(Wikipedia)』 ■ウィキペディアで「Extended Validation Certificate」の詳細全文を読む スポンサード リンク
|