Re: obscuring SCI from Thomas Roessler on 2009-11-17 (public-wsc-wg@w3.org from November 2009)

From: Thomas Roessler <tlr@w3.org>
Date: Tue, 17 Nov 2009 14:12:52 +0100
To: "Mary Ellen Zurko" <mzurko@us.ibm.com>
Cc: Thomas Roessler <tlr@w3.org>, "Mary Ellen Zurko" <Mary_Ellen_Zurko@notesdev.ibm.com>, "public-wsc-wg@w3.org" <public-wsc-wg@w3.org>
Message-Id: <C8679554-669D-4145-ACE7-78A39E0D1BC8@w3.org>

On 17 Nov 2009, at 13:27, Mary Ellen Zurko wrote:

> While I'm concerned about the loopholes in both cases, I find the arguments around A to be pretty compelling. So I'm moving my vote to A. Calling for consensus; any more arguments? The proposal is we change
> 
> The part of the spec that this might violate is 7.4.1, first paragraph: 
> Web user agents <http://www.w3.org/2006/WSC/drafts/rec/rewrite.html#def-user-agent> MUST prevent web content from obscuring, hiding, or disabling user interfaces that display security context information. 
> to
> 
> Web user agents<http://www.w3.org/2006/WSC/drafts/rec/rewrite.html#def-user-agent> MUST prevent web content from obscuring, hiding, or disabling user interfaces that display security context information without user interactions. 
> 
> 
> If there are no further arguments, I'll spin up an editorial action to implement this change. 

Looking at this with perhaps slightly fresher eyes, is this "MUST prevent ... without user interactions" or is this about "interfaces that display security context information without user interactions"?  This looks like it needs a bit of clean-up in the text.

Received on Tuesday, 17 November 2009 13:12:56 UTC