Legend

Forum

Unread topics or posts

Topic

Unread posts

Locked

Announcement

Forums > Questions

Why no EV certificate?



AuthorMessage
lswab

Posted: Jul 12, 2013
Score: 0



Why does https://www.toodledow.com not use Extended Validation Web Site Certificates?

How do I know that my connection isn't being intercepted?
Jake

Toodledo Admin
Posted: Jul 12, 2013
Score: 0



At one point I tried to get an Extended Validation Certificate but the paperwork was extremely cumbersome, so we never finished the process. In any case, we still have a valid SSL certificate that protects your data in the same way.

From wikipedia: "Certificates issued by a CA under the EV guidelines are not structurally different from other certificates (and hence provide no stronger cryptography than other, cheaper certificates)"
krellan

Posted: Jul 12, 2013
Score: 0



I wouldn't mind seeing an EV certificate here.

https://www.grc.com/ssl/ev.htm

The paperwork is the whole idea: to better prove your identity to the issuer. Since there are fewer allowed issuers in browsers, and the good browsers (not MSIE) do not allow local administrators to add their own trusted issuers, it provides reasonably good proof that you aren't having your certificates rewritten behind your back.

However, maybe it's overkill for this site. If somebody sees my to-do list, all they will learn is that I have a cluttered life, nothing earth-shattering there....
You cannot reply yet


To participate in these forums, you must be signed in.



Toodledo Forums > Questions