Правила выпуска зеленых EV SSL сертификатов
для верификации владельца и защиты сайта

Контакты
☎ +380672576220

Проверка
SSL

Установка
SSL

Цепочка
SSL

Seal
SSL

CSR
pKey

Экспорт-Импорт
Конвертер

Code Sign
сертификаты

Email Smime
сертификаты

PDF и Word
сертификаты

База
знаний

Купить
SSL

Правила EV SSL сертификатов

Помощь

Index

1. Scope (6)

2. Purpose (6)
2.1 Purpose of EV Certificates (6)
2.1 Purpose of EV Certificates (6)
2.1.1 Primary Purposes (6)
2.1.2 Secondary Purposes (6)
2.1.3 Excluded Purposes (7)

3. References (7)

4. Definitions (7)

5. Abbreviations and Acronyms (10)

6. Conventions (11)

7. Certificate Warranties and Representations (11)
7.1 EV Certificate Warranties (11)
7.2 By the Applicant (12)

8. Community and Applicability (12)
8.1 Issuance of EV Certificates (12)
8.2 EV Policies (12)
8.2.1 Implementation (12)
8.2.2 Disclosure (12)
8.3 Commitment to Comply with Recommendations (12)
8.4 Insurance (12)
8.5 Obtaining EV Certificates (13)
8.5.1 General (13)
8.5.2 Private Organization Subjects (13)
8.5.3 Government Entity Subjects (13)
8.5.4 Business Entity Subjects (13)
8.5.5 Non-Commercial Entity Subjects (14)

9. EV Certificate Content and Profile (14)
9.1 Issuer Information (14)
9.2 Subject Information (14)
9.2.1 Subject Organization Name Field (14)
9.2.2 Subject Alternative Name Extension (15)
9.2.3 Subject Common Name Field (15)
9.2.4 Subject Business Category Field (15)
9.2.5 Subject Jurisdiction of Incorporation or Registration Field (15)
9.2.6 Subject Registration Number Field (16)
9.2.7 Subject Physical Address of Place of Business Field (16)
9.2.8 Other Subject Attributes (16)
9.3 Certificate Policy Identification (17)
9.3.1 EV Certificate Policy Identification Requirements (17)
9.3.2 EV Subscriber Certificates (17)
9.3.3 Root CA Certificates (17)
9.3.4 EV Subordinate CA Certificates (17)
9.3.5 Subscriber Certificates (17)
9.4 Maximum Validity Period For EV Certificate (17)
9.5 Subscriber Public Key (17)
9.6 Certificate Serial Number (17)
9.7 Additional Technical Requirements for EV Certificates (17)

10. EV Certificate Request Requirements (18)
10.1 General Requirements (18)
10.1.1 Documentation Requirements (18)
10.1.2 Role Requirements (18)
10.2 EV Certificate Request Requirements (18)
10.3 Requirements for Subscriber Agreement and Terms of Use (19)

11. Verification Requirements (19)
11.1 General Overview (19)
11.1.1 Verification Requirements - Overview (19)
11.1.2 Acceptable Methods of Verification Overview (19)
11.2 Verification of Applicant’s Legal Existence and Identity (19)
11.2.1 Verification Requirements (19)
11.2.2 Acceptable Method of Verification (20)
11.3 Verification of Applicant’s Legal Existence and Identity - Assumed Name (22)
11.3.1 Verification Requirements (22)
11.3.2 Acceptable Method of Verification (23)
11.4 Verification of Applicant’s Physical Existence (23)
11.4.1 Address of Applicant’s Place of Business (23)
11.4.2 Telephone Number for Applicant’s Place of Business (24)
11.5 Verification of Applicant’s Operational Existence (24)
11.5.1 Verification Requirements (24)
11.5.2 Acceptable Methods of Verification (24)
11.6 Verification of Applicant’s Domain Name (24)
11.6.1 Verification Requirements (24)
11.6.2 Acceptable Methods of Verification (25)
11.7 Verification of Name, Title, and Authority of Contract Signer and Certificate Approver (26)
11.7.1 Verification Requirements (26)
11.7.2 Acceptable Methods of Verification Name, Title and Agency (26)
11.7.3 Acceptable Methods of Verification Authority (27)
11.7.4 Pre-Authorized Certificate Approver (28)
11.8 Verification of Signature on Subscriber Agreement and EV Certificate Requests (28)
11.8.1 Verification Requirements (28)
11.8.2 Acceptable Methods of Signature Verification (29)
11.9 Verification of Approval of EV Certificate Request (29)
11.9.1 Verification Requirements (29)
11.9.2 Acceptable Methods of Verification (29)
11.10 Verification of Certain Information Sources (29)
11.10.1 Verified Legal Opinion (29)
11.10.2 Verified Accountant Letter (30)
11.10.3 Face-to-Face Validation (31)
11.10.4 Independent Confirmation From Applicant (31)
11.10.5 Qualified Independent Information Source (33)
11.10.6 Qualified Government Information Source (33)
11.10.7 Qualified Government Tax Information Source (33)
11.11 Other Verification Requirements (33)
11.11.1 High Risk Status (33)
11.11.2 Denied Lists and Other Legal Black Lists (33)
11.11.3 Parent/Subsidiary/Affiliate Relationship (34)
11.12 Final Cross-Correlation and Due Diligence (34)
11.13 Requirements for Re-use of Existing Documentation (35)
11.13.1 For Validated Data (35)
11.13.2 Validation for Existing Subscribers (36)
11.13.3 Exceptions (36)
11.13.4 Validation of Re-issuance Requests (36)

12. Certificate Issuance by a Root CA (36)

13. Certificate Revocation and Status Checking (37)

14. Employee and third party issues (37)
14.1 Trustworthiness and Competence (37)
14.1.1 Identity and Background Verification (37)
14.1.2 Training and Skills Level (37)
14.1.3 Separation of Duties (37)
14.2 Delegation of Functions to Registration Authorities and Subcontractors (38)
14.2.1 General (38)
14.2.2 Enterprise RAs (38)
14.2.3 Guidelines Compliance Obligation (38)
14.2.4 Allocation of Liability (38)

15. Data Records (38)

16. Data Security (38)

17. Audit (39)
17.1 Eligible Aud it Schemes (39)
17.2 Audit Period (39)
17.3 Audit Record (39)
17.4 Pre-Issuance Readiness Audit (39)
17.5 Regular Self Audits (39)
17.6 Auditor Qualification (39)
17.7 Root CA Key Pair Generation (40)

18. Liability and Indemnification (40)

Appendix A - User Agent Verification (Normative) (41)

Appendix B - Sample Legal Opinion Confirming Specified Information (Informative) (42)

Appendix C - Sample Accountant Letters Confirming Specified Information (Informative) (44)

Appendix D - Country-Specific Interpretative Guidelines (Normative) (48)

Appendix E - Sample Contract Signer's Representation/Warranty (Informative) (50)

Руководство по выпуску и управлению EV SSL сертификатов с расширенной валидацией

Appendix B - Sample Legal Opinion Confirming Specified Information (Informative)

[Law Firm Letterhead]

[Date]

To:	[Name of Issuing Certification Authority] [Address / fax number of Issuing CA – may be sent by fax or email attachment]
Re:	EV Certificate Request No. [CA Reference Number]
Client:	[Exact company name of Client – see footnote 1]
Client Representative:	[Exact name of Client Representative who signed the Application – see footnote 2]
Application Date:	[Insert date of Client’s Application to the Issuing CA,]

This firm represents [exact company name of Client]* (“Client”), who has submitted the Application to you dated as of the Application Date shown above (“Application”). We have been asked by our Client to present you with our opinion as stated in this letter.

[Insert customary preliminary matters for opinion letters in your jurisdiction.]

On this basis, we hereby offer the following opinion:
1. That [exact company name of Client] (“Company”) is a duly formed [corporation, LLC, etc.] that is “active,” “valid,” “current,” or the equivalent under the laws of the state/province of [name of governing jurisdiction where Client is incorporated or registered] and is not under any legal disability known to the author of this letter.
2. That Company conducts business under the assumed name or “DBA”[assumed name of the Applicant] and has registered such name with the appropriate government agency in the jurisdiction of its place of business below.
3. That [name of Client’s Representative]2 has authority to act on behalf of Company to: [select as appropriate] (a) provide the information about Company required for issuance of the EV Certificates as contained in the attached Application, (b) request one or more EV Certificates and to designate other persons to request EV Certificates, and (c) agree to the relevant contractual obligations contained in the Subscriber Agreement on behalf of Company.
4. That Company has a physical presence and its place of business is at the following location:
--------------------------------
--------------------------------
--------------------------------
----------------------------------------------------

1 Note: This must be the Client’s exact corporate name, as registered with the relevant Incorporating Agency in the Client’s Jurisdiction of Incorporation. This is the name that will be included in the EV Certificate.

2 Note: If necessary to establish the Client Representative’s actual authority, you may rely on a Power of Attorney from an officer of Client who has authority to delegate the authority to the Client Representative.

3 Note: This letter may be issued by in-house counsel for the Client so long as permitted by the rules of your jurisdiction.

5. That Company can be contacted at its stated place of business at the following telephone number:
--------------------------------

6. That Company has an active current Demand Deposit Account with a regulated financial institution.

7. That Company has the exclusive right to use the following Domain Name in identifying itself on the Internet:
--------------------------------

[Insert customary limitations and disclaimers for opinion letters in your jurisdiction.

[Name and signature]

[Jurisdiction(s) in which attorney / Latin notary is admitted to practice]3

cc: [Send copy to Client]

 DV OV EV WC SAN PRO CodeSign Email PDF Wi-Fi IoT ALL Купить сертификат

NO russia - мы не осблуживаем резидентов из россии

Правила выпуска зеленых EV SSL сертификатовдля верификации владельца и защиты сайта

Руководство по выпуску и управлению EV SSL сертификатов с расширенной валидацией Appendix B - Sample Legal Opinion Confirming Specified Information (Informative)

Правила выпуска зеленых EV SSL сертификатов
для верификации владельца и защиты сайта

Руководство по выпуску и управлению EV SSL сертификатов с расширенной валидацией

Appendix B - Sample Legal Opinion Confirming Specified Information (Informative)