| ▲ | wnevets 14 hours ago | ||||||||||||||||
> In addition to all of the authentication steps CAs take for DV and OV certificates, EV certificates require vetting of the business organization’s operational existence, physical address and a telephone call to verify the employment status of the requestor. [1] [1] https://www.digicert.com/difference-between-dv-ov-and-ev-ssl... Tying a phone number to a physical address and company is a lot more useful than just proof of control over a domain. Of course its not 100% fool proof and depends on the quality of the CA but still very useful. | |||||||||||||||||
| ▲ | matrss 14 hours ago | parent | next [-] | ||||||||||||||||
> Tying a phone number to a physical address and company is a lot more useful than just proof of control over a domain. It might be useful in some cases, but it is never any more secure than domain validation. Which is why browsers don't treat it in a special way anymore, but if you want you can still get EV certificates. | |||||||||||||||||
| ▲ | monerozcash 13 hours ago | parent | prev [-] | ||||||||||||||||
It was easy to provide the information for an existing business you're completely unrelated to. Reliably verifying that a person actually represents a company isn't possible in most of the world. | |||||||||||||||||
| |||||||||||||||||