W3C home > Mailing lists > Public > public-webappsec@w3.org > November 2015

Marking HTTP As Non-Secure

From: Raúl Martínez <rme@rme.li>
Date: Thu, 5 Nov 2015 16:35:19 +0100
Message-ID: <CA+8=xuJ6kXEau5F2_4FoK_hneR5sn80txEPG6fN9qfmeD=4v-g@mail.gmail.com>
To: public-webappsec@w3.org, blink-dev@chromium.org, security-dev@chromium.org, dev-security@lists.mozilla.org
Hi,
Latest Forefox nightly build (44) marks HTTP as non secure if the page
contains a password input.

Today I read again the proposal (
https://www.chromium.org/Home/chromium-security/marking-http-as-non-secure)
and I realise that year 2015 is about to end and currently no browsers are
even marking http as dubious.

What are the plans un Chrome and Firefox for this proposal? What is the
planned roadmap?

Thanks
Received on Friday, 6 November 2015 08:31:31 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:16 UTC