Extended Validation Secure Sockets Layer (SSL) Certificates are special SSL Certificates that work with high security Web browsers to clearly identify a Web site's organizational identity. Extended Validation (EV) helps you make sure a Web site is genuine and verified.

For example, if you use Microsoft^® Internet Explorer 7 to go to a Web site secured with an SSL Certificate that meets the Extended Validation Standard, IE7 will cause the URL address bar to turn green. A display next to the green bar will alternatively (toggle) display the organization name listed in the certificate and the Certificate Authority (VeriSign, for example).

Malicious and suspicious online activity, phishing attacks have dramatically increased in recent years, creating a heightened need for improved visibility of security.

Before you share your confidential data online, you require proof of identification from a trusted source. The Extended Validation SSL Standard raises the bar on verification of SSL Certificates and enables visual displays in high security browsers. (EV) SSL Certificates empower you to protect yourself online.

Users of high-security browsers will see visual cues that are triggered by the presence of an (EV) SSL Certificate. If you're familiar with red-light/green-light intersections, you'll understand the basic concept.

• Green tells you it's safe and the site is legitimate.
• Red tells you to stop, usually because the site isn't secure.

The EV SSL certificate supports Microsoft^® Internet Explorer (IE) 7* and 8, Firefox 3 and Safari 3.2, Google Chrome and Flock. These versions and above are applicable.

Other browsers are expected to offer Extended Validation visibility in upcoming releases. Older browsers will display Extended Validation SSL Certificates with the same security symbols as existing SSL Certificates.

• Extended Validation -SSL, or EV-SSL for short, means that OnlineSBI site has undergone many rigorous checks to confirm its validity, and has been provided with a 'certificate of authenticity' which is recognized by high end browsers.
• o In the majority of cases, this validation is shown in the browser address bar, displaying a 'traffic light' style response of green, or red. This feature gives you the added confidence of knowing the site you're using has been confirmed as genuine.
• The EV-SSL certificate of authenticity is recognised by most browsers, though there are variations in the way the different browsers display the validation.
• The majority of users running Internet Explorer versions 7 and 8 (IE7 and IE8), Mozilla Firefox 3, Opera 9.5 and Safari 3.2 will see the following 'traffic light' responses on their address bars:
• Authenticated websites will display a GREEN address bar plus a padlock symbol, referencing the certificate and the authenticated website provider.
• Websites identified as fraudulent and a phishing site, or as having a revoked or expired validation certificate, will display a RED address bar.
• Users running Internet Explorer 6 (IE6), Mozilla Firefox 2 will continue to see the standard address bar along with the padlock symbol. No 'traffic light' notification will be displayed.
• It is recommended that you upgrade your browser to a version that is compatible with EVSSL. You can upgrade your browser version from your browser providers' website.

A browser identifies an SSL Certificate as authentic by checking if the certificate matches a valid SSL root resident on the client machine. VeriSign signs every EV SSL Certificate with two roots: an EV root and a traditional SSL root. With these two roots, every browser can identify a valid SSL root, even older browsers that do not yet recognize EV.

IE7 is designed to recognize Extended Validation, but may not correctly display in Windows XP because the traditional SSL root is matched rather than the EV root. Windows XP systems do not automatically update the root store.

Developed before the EV standard existed, Windows XP systems do not have the EV root locally resident unless it has been manually updated and, because the browser recognizes the traditional SSL root, it has no trigger to update the root store. VeriSign EV Upgrader technology, built directly into the VeriSign Secured^® Seal, will trigger this manual update. Explorer 7 on Vista is designed to automatically update the root store on a weekly basis and should always recognize an EV Certificate and display it appropriately.

Source - www.verisign.com