99% of "SSL Secure" Websites Are Not

Only 1 Percent of SSL-Secured Sites Use Extended Validation SSL - DarkReading

Calls for widespread EV (Extended Valuation) SSL implementation are on the rise as SSL threats increase

By Kelly Jackson Higgins - DarkReading

Two years after its rollout, the more secure Extended Validation Secure Sockets Layer (EV SSL) digital certificate for authenticating Websites and securing Web sessions is used on more than 11,000 Websites worldwide. But that's only 1 percent of the 1.03 million sites currently secured with SSL certificates, according to Netcraft. 

Editor Translation:  99% of "SSL Secure" websites are "SOL" when it comes to security.

Meanwhile, calls for EV SSL adoption have intensified amid concerns of new man-in-the-middle (MITM) attacks targeting newly discovered weaknesses in SSL, namely the MD5 encryption algorithm hack that allows the creation of forged CA and X.509 digital certificates, and the MITM attack demonstrated at Black Hat DC that basically makes users think they are visiting a secure Website when they are not.

Continue darkReading

Related articles by Zemanta

• The foaf+ssl paradigm shift (blogs.sun.com)
• VeriSign addresses SSL certificate flaw (vnunet.com)
• Hacker pokes third hole in secure sockets layer (theregister.co.uk)
• New SSL Web site hack revealed (infoworld.com)