- From: Mary Ellen Zurko <Mary_Ellen_Zurko@notesdev.ibm.com>
- Date: Mon, 30 Apr 2007 09:39:05 -0400
- To: <michael.mccormick@wellsfargo.com>
- Cc: public-wsc-wg@w3.org
Received on Monday, 30 April 2007 13:39:12 UTC
> Items on the secondary panel -- such as TLS version/cipher/keysize, name
> resolution basis (DNS/DNSSEC/HOSTFILE), certificate type (self-signed,
> trusted root, EV root), certificate status (expiration, revocation,
> DN/hostname match)-- should all be inputs into the primary indicator as
> well.
Could you make sure each of those specifics is reflected in:
http://www.w3.org/2006/WSC/wiki/PageInfoSummary
If not, please add them.
> WSC could provide the web software industry a model for:
> (a) what those inputs are,
> (b) how they should be weighted & aggregated to yield an overall
> security "score" for web pages,
> (c) how that score should be turned into a visual primary indicator.
If you want this to be in the recommendations, can you make sure it's in
something pointed to by:
http://www.w3.org/2006/WSC/wiki/RecommendationDisplayProposals
I'm not sure it is.
Mez
Received on Monday, 30 April 2007 13:39:12 UTC