The Wall Street Journal
Software to Spot 'Phishers' Irks Small Concerns
By RIVA RICHMOND
December 19, 2006; Page B1
(snip)
IE7 has a security feature that will turn Web-address bars green and display owners' identities when consumers visit secure sites from businesses verified as legitimate. The color change will be a boon for consumers, who have been barraged in recent years with "phishing" scams designed to lure them to fake versions of popular Web sites, like eBay or their bank, to filch their account numbers. The hope is that the program will help reduce fraud, lift trust and boost e-commerce.
But sole proprietorships, general partnerships and individuals won't be eligible for the new, stricter security certificates that Microsoft requires to display the color. There are about 20.6 million sole proprietorships and general partnerships in the U.S., according to 2003 and 2004 tax data from the Internal Revenue Service, though it isn't clear how many are engaged in e-commerce.
(snip)
Microsoft says green shouldn't be considered a seal of approval, but rather a sign that the site owner is a legitimate business. The display of company names in the bar will allow consumers to confirm they're on the site they intended to visit. But Ms. Murphy and others say people will likely think green signals "go," particularly once they start using Microsoft's related Phishing Filter, a free, optional service for online shoppers that turns address bars yellow on suspicious sites and red on confirmed phishing sites. The Phishing Filter was made available Oct. 18 to current XP users with the IE7 browser.
(snip)
The new certificates, called extended validation secure-sockets-layer certificates, or EV SSL for short, are affidavits from a certificate authority both that private data are being encrypted and that the business operating the site has been confirmed as real. By contrast, current SSL certificates -- the technology that encrypts data and puts a small lock on visitors' browsers -- can be obtained with little more than a credit card and are considered ripe for abuse by con artists.
(snip)
URL for this article:
http://online.wsj.com/article/SB116649577602354120.html (subscription)