What is the difference between an Extended Validation (EV) certificate and an Organization Validation (OV) certificate?
The main difference between Extended Validation (EV) and Organization Validation (OV) SSL certificates is the vetting process that must be completed in order for the Certification Authority (CA) to issue a signed certificate to the requestor. More comprehensive than the OV vetting process, the EV vetting process validates the requestor's domain control and verifies the requesting entity's legal existence and identity. The process authenticates the following information pertaining to the certificate-requesting organization:
- Legal existence: The CA must confirm with the Incorporating Agency in the requesting entity's Jurisdiction of Incorporation that, as of the date the EV certificate is issued, the organization named in the EV certificate legally exists as a valid organization or entity in the Jurisdiction of Incorporation.
- Identity: The CA must confirm that, as of the date the EV certificate is issued, the legal name of the entity named in the EV certificate matches the name on the official government records of the Incorporating Agency in the requesting entity's Jurisdiction of Incorporation. (And if an assumed name is also included, that the assumed name is properly registered by the requesting entity in the jurisdiction of its place of business.)
- Registration number: The CA must obtain the specific unique registration number assigned to applicant by the Incorporating Agency in the requesting entity's Applicant's Jurisdiction of Incorporation.
- Registered agent: The CA must obtain the identity and address of the requesting entity's Registered Agent or Registered Office (as applicable) in the requestor's Jurisdiction of Incorporation.
- Right to use domain name: The CA must take all steps reasonably necessary to verify that, as of the date the EV certificate is issued, the entity named in the EV Certificate owns or has the exclusive right to use the domain name listed in the EV certificate.
- Authorization for EV SSL certificate: The CA must take all steps reasonably necessary to verify that the entity named in the EV certificate has authorized the issuance of the EV certificate.