Verisign Required Documentation

Why is it important for VeriSign to verify my business identity?

How does an online customer know the Main Street Flower Shop is a real business and their information is safe when they place an order? More and more customers look for evidence of encryption and third-party business identity authentication. When VeriSign verifies your information during the enrollment process, we use the information to provide third-party verification that your customers will trust. 

VeriSign is the world’s leading Certificate Authority, securing more than 450,000 Web sites. Our authentication and verification procedures are based on years of practice, authenticating more than half a million commercial businesses. These procedures are audited annually by KPMG using Statement of Auditing Standard 70 Type II, established by the American Institute of Certified Public Accountants.

What will I need to provide in order for VeriSign to verify my business identity?

When you request an SSL Certificate, VeriSign must verify the existence of your business, the ownership of your domain name, and your employment status using 2- factor authentication. Likewise, every administrator receives full business identity authentication before gaining access to a Managed PKI for SSL account.

We may require official government documentation proving your right to do business. These include, but are not limited to:

• Articles of Incorporation
• Business License
• Certificate of Formation
• Doing Business As
• Registration of Trade Name
• Charter Documents
• Partnership Papers
• Fictitious Name Statement
• Vendor/Reseller/Merchant License
• Merchant certificate

If we cannot automatically authenticate your company's management responsibility for the domain name that will use the SSL Certificate, we will require an authorization letter from that domain's owner. This step prevents applicants from fraudulently or accidentally obtaining SSL Certificates for inappropriate domains.

How long does verification take?

We have automated much of the business authentication process to save time but may require additional proof to prevent fraud or error. VeriSign provides immediate issuance for enrolled Managed PKI for SSL. VeriSign guarantees express delivery for VeriSign Secure Site Pro services. This guarantee is for every business located in the United States that pays by credit card with a valid number and that has a Dun and Bradstreet DUNS number and valid domain name as stated in VeriSign’s Certification Practice Statement. For all others, the business authentication process could take as little as 2 hours or up to several days, depending on the verification information you provide.

Which VeriSign SSL products and services require business identity verification?

All VeriSign SSL services require business identity authentication. With Managed PKI for SSL services, once administrators are enrolled they become the Certificate Authority for their organization. They authenticate the identity of internal certificate applications and offer instant issuance of SSL Certificates.

What measures does VeriSign take to make sure its business identity verification is accurate?

With over half a million businesses authenticated, VeriSign follows a rigorous and independently audited authentication process. All involved VeriSign employees pass stringent background checks, and each authentication is split between multiple individuals. We maintain physically secure facilities, including biometric screening on entry.