Educause Security Discussion mailing list archives

Re: Extended Validation SSL/TLS Certificates

From: Brian Epstein <bepstein () IAS EDU>
Date: Sun, 4 May 2008 14:19:42 -0400

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Mike Wiseman wrote:

Is anyone using or planning to use EV SSL/TLS server certs? We're
considering their use for targeted high-visibility services such as


Mike,

        We just switched our SSL certificate vendor and I looked into EV certs.
 I couldn't justify the cost for the benefit.  For the majority of our
users and uses, a standard SSL certificate is fine.

        There is probably only a handful of IT folk at the Institute that would
notice a difference, and only a few of them that would understand the
difference.

        Is there a specific benefit that you are seeking to gain?  Maybe I'm
missing a compelling reason to use EV certs.

Thanks,
Brian

- --
Brian Epstein <bepstein () ias edu>                        609-734-8179
Network and Security Officer            Institute for Advanced Study
Key fingerprint = 128A 38F4 4CFA 5EDB 99CE  4734 6117 4C25 0371 C12A
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org

iD8DBQFIHf4+YRdMJQNxwSoRAjIiAKDMG0izlO4gJK52p8r+v9WRCGe7cACgmmcV
7YSG2n32Q1wpsDOxyL58t1I=
=ftq3
-----END PGP SIGNATURE-----

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Current thread:

Extended Validation SSL/TLS Certificates Mike Wiseman (Apr 29)
- <Possible follow-ups>
- Re: Extended Validation SSL/TLS Certificates Brian Epstein (May 04)