RE: DNSSEC indicator from michael.mccormick@wellsfargo.com on 2007-04-30 (public-wsc-wg@w3.org from April 2007)

From: <michael.mccormick@wellsfargo.com>
Date: Mon, 30 Apr 2007 15:15:08 -0500
To: <Mary_Ellen_Zurko@notesdev.ibm.com>
Cc: <public-wsc-wg@w3.org>
Message-ID: <8A794A6D6932D146B2949441ECFC9D680360877C@msgswbmnmsp17.wellsfargo.com>

Done.

  _____  

From: Mary Ellen Zurko [mailto:Mary_Ellen_Zurko@notesdev.ibm.com] 
Sent: Monday, April 30, 2007 8:39 AM
To: McCormick, Mike
Cc: public-wsc-wg@w3.org
Subject: RE: DNSSEC indicator



> Items on the secondary panel -- such as TLS version/cipher/keysize,
name
> resolution basis (DNS/DNSSEC/HOSTFILE), certificate type (self-signed,
> trusted root, EV root), certificate status (expiration, revocation,
> DN/hostname match)-- should all be inputs into the primary indicator
as
> well.

Could you make sure each of those specifics is reflected in:
http://www.w3.org/2006/WSC/wiki/PageInfoSummary

If not, please add them. 

> WSC could provide the web software industry a model for:
> (a) what those inputs are,
> (b) how they should be weighted & aggregated to yield an overall
> security "score" for web pages,
> (c) how that score should be turned into a visual primary indicator.

If you want this to be in the recommendations, can you make sure it's in
something pointed to by:
http://www.w3.org/2006/WSC/wiki/RecommendationDisplayProposals

I'm not sure it is. 
        Mez

Received on Monday, 30 April 2007 20:15:39 UTC