- From: George Staikos <staikos@kde.org>
- Date: Thu, 15 Jun 2006 12:08:51 -0400
- To: "Undisclosed.Recipients": ;
- Cc: public-usable-authentication@w3.org
On Thursday 15 June 2006 04:10, Thomas Roessler wrote:
> Excellent analysis.
>
> The things that I'd think would be most useful to do (doing in
> the sense of having a working group about them) in order to
> meet the goal of helping vigilant ("suspicious", whatever we
> call them) users:
>
> - Define a baseline set of security context information that
> will be presented consistently, across browsers, e.g., "pick
> these elements from your X.509 certs", "add that information
> from whateversecurityprotocolcomesnext";
> - define best practices for how to present them nicely,
> non-scarily and usably;
> - define requirements that list precisely what browsers should
> not let content do to user interface elements, in particular
> those that are used to present security relevant context.
This sounds like productive work to me. I would be willing to participate
in this, and hopefully have one other KDE developer join in sometime this
year.
--
George Staikos
KDE Developer http://www.kde.org/
Staikos Computing Services Inc. http://www.staikos.net/
Received on Thursday, 15 June 2006 16:06:58 UTC