W3C home > Mailing lists > Public > public-usable-authentication@w3.org > September 2009

[wsc-ui] comments

From: Marcin Hanclik <Marcin.Hanclik@access-company.com>
Date: Thu, 17 Sep 2009 22:39:50 +0200
To: "public-usable-authentication@w3.org" <public-usable-authentication@w3.org>
Message-ID: <FAA1D89C5BAF1142A74AF116630A9F2C2890BCA50A@OBEEX01.obe.access-company.com>
The term "chrome" seems undefined, in the document it seems to be implicitly equivalent to the user interface.
FYI: The View Modes specification [1] (currently approaching FPWD) tries to define what chrome is, mentions scrollbars etc.

4.2.1
The term "widget" is used. In order not to confuse a potential reader (aka W3C Widgets), I suggest to change "widget" to "control" or "UI component".

7.2
Could the document mention the Widget User Agent as well?
[2] defines the "mini" mode that is without chrome.

6.3
Widgets related:
[3] could be used to define some indicator specifying who/how the widget was signed.

7.4.2
What if the installation-related security aspects are controlled by the underlying security policy?
[4], specifically its section 3.2.3 is just FYI.

7.4.1
FYI:
"Web user agents MUST prevent web content from overlaying chrome. User interactions that are perceived to deal with browser chrome must not be detectable for Web content."
is important for [5] and [6].

[1] http://dev.w3.org/2006/waf/widgets-vm/vm-mediafeature.src.html#chrome
[2] http://dev.w3.org/2006/waf/widgets-vm/vm-mediafeature.src.html#mini
[3] http://www.w3.org/TR/widgets-digsig/
[4] http://bondi.omtp.org/1.01/security/BONDI_Architecture_and_Security_v1_01.pdf
[5] http://bondi.omtp.org/1.01/apis/ui.html
[6] http://www.w3.org/2009/dap/

________________________________________

Access Systems Germany GmbH
Essener Strasse 5  |  D-46047 Oberhausen
HRB 13548 Amtsgericht Duisburg
Geschaeftsfuehrer: Michel Piquemal, Tomonori Watanabe, Yusuke Kanda

www.access-company.com

CONFIDENTIALITY NOTICE
This e-mail and any attachments hereto may contain information that is privileged or confidential, and is intended for use only by the
individual or entity to which it is addressed. Any disclosure, copying or distribution of the information by anyone else is strictly prohibited.
If you have received this document in error, please notify us promptly by responding to this e-mail. Thank you.
Received on Thursday, 17 September 2009 20:40:34 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Thursday, 17 September 2009 20:40:35 GMT