We should investigate what is needed to fully support Extended Validation certificates in our SSL/TLS implementation. For example, we may want to enable revocation checking via OCSP by default (see 6869739) and add support for OCSP stapling (part of the TLS extensions RFC 3546) and perhaps new APIs and security dialogs that identify SSL/TLS connections that use EV certs.

See: http://cabforum.org/EV_Certificate_Guidelines_V11.pdf (GUIDELINES FOR THE ISSUANCE AND MANAGEMENT OF EXTENDED VALIDATION CERTIFICATES) for more specific information on EV certs.