About the UI displaying the website trusted identity validation icon

Whether a website is secure or not, there are at least three basic elements, one is https encryption, the other is WAF protection, and the third is trusted identity validation, all three are indispensable. That's why the ZT Browser innovative displays three website security-related icons:     , not only has the security padlock, but also have the cloud WAF protection icon and the website trusted identity validation level icon. Please refer to the innovation UI Icon Summary of ZT Browser for details.

Website identity is the first identity on the Internet. ZT Browser "innovative directly displays the website identity trusted level icon and displays website identity information in the address bar, which makes it easy for website visitors to understand the real identity of the website and facilitate visitors to quickly identify fake fraud websites.

The first element of website security is HTTPS encryption to realize the information transmission from the browser to the server is encrypted to prevent confidential information from leaking in the transmission process, effectively preventing various illegal stealing and illegal tampering. This is the basic requirement, without HTTPS encryption, all browsers will display "Not secure", which is a correct and accurate.

The second element of website security is WAF protection, which is also indispensable. WAF can effectively prevent various attacks and prevent illegal stealing and illegal tampering after the information reaches the server from browser. HTTPS encryption guarantees confidential information to reach the server security, and after the information arrives at the server, the work that prevent various attacks can only be completed by the Web Application Firewall. Without WAF protection, HTTPS encryption is also meaningful, this point is very important. HTTPS encryption and WAF protection are all duty and one section of each.

The third element of website security is the website trusted identity validation. A fake bank website may also have HTTPS encryption, and the browser also shows the security padlock. It may also have WAF protection. However, these do not prove that this fake bank website is secure! Therefore, the website trusted identity validation is the third important factor of website security, which is as important as HTTPS encryption and WAF protection! The simplest website trusted identity validation is to deploy the IV SSL certificate, OV SSL certificate and EV SSL certificate that has validated the website identity, ZT Browser will correspond to display , , icons. For websites that have only deployed DV SSL certificates that have not verified identity, ZT Browser will display icon since the website identity is not validated.

Users also choose the ZoTrus Website Trusted Identity Validation Service. After passing IV certification, OV certification and EV certification, ZT Browser will display , , icons accordingly. That is to say, websites can still deploy cheap or even free DV SSL certificates that only validates domain name control for https encryption, but after the website passes the ZoTrus EV certification, ZT Browser will displays the green address bar and the icon like the website has deployed an EV SSL certificate. This is an innovative solution to reduce the cost of SSL certificate.

Please note that after clicking the trusted identity validation icon, it will display the website identity information and display validation operator name, clearly tell website visitor which organization have validated the identity of this website. In addition to the "Identified by ZT Browser", it will display the IV SSL /OV SSL /EV SSL certificate issuer O field, as shown in the left figure below. Or display the ZT Browser trusted CA operator name for its validated website trusted identity, as shown in the right figure below.

It is recommended to choose the ZoTrus SM2 HTTPS Automation Management Solution. There is no need to apply for an SSL certificate from the CA, and there is no need to install an SSL certificate on the Web server to automatically realize https encryption. Customers can choose a suitable solution according to their own business system management needs, it has two main application scenarios: HTTPS encryption automation and SM2 HTTPS encryption transformation. The former mainly solves the problem of automatic deployment of RSA/ECC algorithm SSL certificates, because many websites and various business management systems are still not deployed SSL certificates, these systems only need to deploy RSA/ECC algorithm SSL certificates, and do not need to be transformed to support SM2 SSL certificate, but they need to realize automated certificate management. The latter requires not only the deployment of RSA/ECC SSL certificates, but also the deployment of SM2 SSL certificates, and the automatic management of dual-algorithm certificates.