State Bank of India Logo. Click here to view State Bank of India website.
You are here: EV - SSL Certificate - FAQ

EV - SSL Certificate Frequently Asked Questions

  1. What is Extended Validation SSL Certificate?
  2. Why Are (EV) SSL Certificates Being Implemented?
  3. What are High Security Browsers?
  4. How does EV-SSL work?
  5. Why wouldn't the IE7 browser recognize EV?
  1. What is Extended Validation SSL Certificate?

    Extended Validation Secure Sockets Layer (SSL) Certificates are special SSL Certificates that work with high security Web browsers to clearly identify a Web site's organizational identity. Extended Validation (EV) helps you make sure a Web site is genuine and verified.

    For example, if you use Microsoft Internet Explorer 7 to go to a Web site secured with an SSL Certificate that meets the Extended Validation Standard, IE7 will cause the URL address bar to turn green. A display next to the green bar will alternatively (toggle) display the organization name listed in the certificate and the Certificate Authority (VeriSign, for example).

  2. Green address bar

    To Top
  3. Why Are (EV) SSL Certificates Being Implemented?

    Malicious and suspicious online activity, phishing attacks have dramatically increased in recent years, creating a heightened need for improved visibility of security.

    Before you share your confidential data online, you require proof of identification from a trusted source. The Extended Validation SSL Standard raises the bar on verification of SSL Certificates and enables visual displays in high security browsers. (EV) SSL Certificates empower you to protect yourself online.

  4. To Top
  5. What are High Security Browsers?

    Users of high-security browsers will see visual cues that are triggered by the presence of an (EV) SSL Certificate. If you're familiar with red-light/green-light intersections, you'll understand the basic concept.

    • Green tells you it's safe and the site is legitimate.
    • Red tells you to stop, usually because the site isn't secure.

    The EV SSL certificate supports Microsoft Internet Explorer (IE) 7* and 8, Firefox 3 and Safari 3.2, Google Chrome and Flock. These versions and above are applicable.

    Other browsers are expected to offer Extended Validation visibility in upcoming releases. Older browsers will display Extended Validation SSL Certificates with the same security symbols as existing SSL Certificates.

  6. Browser EV-SSL Indicator
    IE 7.0 & above IE7- address bar
    Mozilla Firefox 3.0 and above FireFox Address bar
    Opera 9.6 and above Opera Address Bar
    Chrome 3.0 chrome - green address bar

    To Top
  7. How does EV-SSL work?

    • Extended Validation -SSL, or EV-SSL for short, means that OnlineSBI site has undergone many rigorous checks to confirm its validity, and has been provided with a 'certificate of authenticity' which is recognized by high end browsers.
    • o In the majority of cases, this validation is shown in the browser address bar, displaying a 'traffic light' style response of green, or red. This feature gives you the added confidence of knowing the site you're using has been confirmed as genuine.
    • The EV-SSL certificate of authenticity is recognised by most browsers, though there are variations in the way the different browsers display the validation.
    • The majority of users running Internet Explorer versions 7 and 8 (IE7 and IE8), Mozilla Firefox 3, Opera 9.5 and Safari 3.2 will see the following 'traffic light' responses on their address bars:
      • Authenticated websites will display a GREEN address bar plus a padlock symbol, referencing the certificate and the authenticated website provider.
      • Websites identified as fraudulent and a phishing site, or as having a revoked or expired validation certificate, will display a RED address bar.
    • Users running Internet Explorer 6 (IE6), Mozilla Firefox 2 will continue to see the standard address bar along with the padlock symbol. No 'traffic light' notification will be displayed.
    • It is recommended that you upgrade your browser to a version that is compatible with EVSSL. You can upgrade your browser version from your browser providers' website.

  8. To Top
  9. Why wouldn't the IE7 browser recognize EV?

    A browser identifies an SSL Certificate as authentic by checking if the certificate matches a valid SSL root resident on the client machine. VeriSign signs every EV SSL Certificate with two roots: an EV root and a traditional SSL root. With these two roots, every browser can identify a valid SSL root, even older browsers that do not yet recognize EV.

    IE7 is designed to recognize Extended Validation, but may not correctly display in Windows XP because the traditional SSL root is matched rather than the EV root. Windows XP systems do not automatically update the root store.

    Developed before the EV standard existed, Windows XP systems do not have the EV root locally resident unless it has been manually updated and, because the browser recognizes the traditional SSL root, it has no trigger to update the root store. VeriSign EV Upgrader technology, built directly into the VeriSign Secured Seal, will trigger this manual update. Explorer 7 on Vista is designed to automatically update the root store on a weekly basis and should always recognize an EV Certificate and display it appropriately.

    • Method For updating the EV SSL root certificate to display proper EV SSL validation in the browser (IE 7) address bar.
    • Customers while visiting www.onlinesbi.com can click on the VeriSign Secured Seal displayed on the right hand section on the homepage. They would then be displayed the SSL Certificate details of State Bank of India. VeriSign EV Upgrader technology, built directly into the VeriSign Secured Seal will trigger this manual update wherein the EV SSL root certificate gets updated into the root store of the client browser (Internet Explorer 7 in XP operating system ). The client browser will contact Microsoft root store service and seamlessly install the Verisign EV root. Once the EV root is stored, it will verify VeriSign EV SSL Certificates on our website and display validation and organization name appropriately. The update happens in the background and without prompting from the user.

    Source - www.verisign.com
  10. To Top
important note This site uses highly secure 256-bit encryption and is compatible with Microsoft Internet Explorer 7 and above or Mozilla 3 and above. If you have an older version of Internet Explorer or Mozilla, please upgrade your browser.