Monday, 30 April 2007
- RE: DNSSEC indicator
- Agenda, Wednesay, 2 May, WSC Call
- RE: Secure Internet Letterhead
- RE: DNSSEC indicator
- Re: Secure Internet Letterhead
- Fw: ACTION-150 Propose text do drill down on possible classes of conforming implementations -- more concrete than note, more abstract than products
Saturday, 28 April 2007
Friday, 27 April 2007
- Editing process for Recommendations
- baked Note edits
- RE: ISSUE-14: Technologies that reduce risk
- RE: ISSUE-19: Arrangement and formatting of use cases
- RE: ISSUE-20 OPEN Potential additions to Available Security Information
- RE: ISSUE-26 OPEN "currently deployed security information"
- RE: ISSUE-29 OPEN Define user agent in wsc-usecases
- RE: ISSUE-30 allow for remote opening of web browser
- Meeting record: WSC WG weekly 2007-04-18
- RE: ISSUE-31 Correct scenarion 20 intended action
- RE: ACTION-182 - SSL error anti patterns
- Re: ISSUE-40: Drill-down access to all security information is not \'nice,\' it\'s required (by UAAG 1.0). (public comment)
- Fw: [Soups-announce] Call for SOUPS posters and discussion sessions
- Re: ISSUE-18: Clarify audience of wsc-usecases
Thursday, 26 April 2007
- ISSUE-15 closing
- ISSUE-31 Correct scenarion 20 intended action
- ISSUE-30 allow for remote opening of web browser
- Re: DNSSEC indicator
- ISSUE-29 OPEN Define user agent in wsc-usecases
- Re: ISSUE-24 OPEN [editorial] Add "known systemic flaws" to goals
- ISSUE-26 OPEN "currently deployed security information"
- wsc-usecases review
- RE: Proposed Recommendation: Page Info Summary
- ISSUE-24 OPEN [editorial] Add "known systemic flaws" to goals
- ISSUE-23 OPEN Rephrase background on usable security in Process secion
- ISSUE-20 OPEN Potential additions to Available Security Information
- Re: ISSUE-19: Arrangement and formatting of use cases
- Re: ISSUE-18: Clarify audience of wsc-usecases
- Re: ISSUE-14: Technologies that reduce risk
- Re: ISSUE-12: User-agents - future proofing
- Re: ISSUE-7: Mental models?
- Re: ISSUE-6 User Interface Issues for Constrained / Mobile Devices
- RE: DNSSEC indicator
- Fw: Dublin workshop on web authoring
- RE: DNSSEC indicator
- RE: DNSSEC indicator
- RE: DNSSEC indicator
- Re: DNSSEC indicator
Wednesday, 25 April 2007
- Re: ISSUE-69: New goal--Reduce the number of scenarios in which users\' security depends upon authenticating sites
- RE: ACTION 181: Summary of EV certificate discussion, prototype recommendation
- RE: ACTION 181: Summary of EV certificate discussion, prototype recommendation
- Re: Proposed Recommendation: Page Info Summary
- Re: ACTION 181: Summary of EV certificate discussion, prototype recommendation
- RE: ACTION 181: Summary of EV certificate discussion, prototype recommendation
- RE: ACTION 181: Summary of EV certificate discussion, prototype recommendation
- RE: ACTION 181: Summary of EV certificate discussion, prototype recommendation
- RE: ACTION 181: Summary of EV certificate discussion, prototype recommendation
- Re: ISSUE-68: Note summary, goals, and scope should more clearly focus on problem to be solved---impersonation
- Regrets
- ACTION 181: Summary of EV certificate discussion, prototype recommendation
- ISSUE-72: Replace term \"Status Quo\" with something more specific
- ISSUE-71: Change title of Section 7
- ISSUE-70: Scope should be defined in terms of concepts, not in terms of use cases
- ISSUE-69: New goal--Reduce the number of scenarios in which users\' security depends upon authenticating sites
- ISSUE-68: Note summary, goals, and scope should more clearly focus on problem to be solved---impersonation
- ISSUE-67: The introduction to the note should include a hyperlink to the charter.
- Proposed Recommendation: Identity indicator in chrome
- Re: Summary of "What is a secure page?" discussion, first draft
- Proposed Recommendation: Page Info Summary
- Re: Summary of "What is a secure page?" discussion, first draft
- RE: ACTION-182 - SSL error anti patterns
- Regrets: Agenda, Wednesay, 25 April, WSC Call
- Re: Agenda, Wednesay, 25 April, WSC Call
Tuesday, 24 April 2007
- Re: Summary of "What is a secure page?" discussion, first draft
- Summary of "What is a secure page?" discussion, first draft
- shared knowledge authentication of web sites
- RE: Agenda, Wednesay, 25 April, WSC Call
- Re: Shared Public Knowledge
Monday, 23 April 2007
- Updating TrustMe wiki page based on telecon
- RE: ACTION-182
- RE: Rough proposal: Contextual Password Warnings
- Re: Rough rec proposal: revisiting past decisions
- Re: Rough rec proposal: revisiting past decisions
- Re: Rough proposal: Contextual Password Warnings
- Agenda, Wednesay, 25 April, WSC Call
- RE: Suggestions for note resulting from a conversation with mez
- Suggestions for note resulting from a conversation with mez
- Re: No Padlock OID
- RE: ACTION-182
- Re: Use Cases Again
- RE: Safe Web Browsing Mode
- Re: No Padlock OID
- ISSUE-66: Suggested rewrite of last paragraph of 10.3
- RE: No Padlock OID
Sunday, 22 April 2007
- Re: No Padlock OID
- Re: No Padlock OID
- No Padlock OID
- Re: ACTION-188 summarize robustness practices in terms of limitations on sites' freedom
- Re: ACTION-188 summarize robustness practices in terms of limitations on sites\\\\\\\\' freedom
Friday, 20 April 2007
- RE: Safe Web Browsing Mode
- RE: Favicon anti-pattern
- Re: ACTION-182
- ACTION-182
- RE: Favicon anti-pattern
- Look over background for any further recommendations
- ISSUE-46: widely deployed baseline, yes; usage and presentation, yes (pubic comment)
- RE: ISSUE-47: define extension interface for content-scanning tools (public comment)
Thursday, 19 April 2007
- Re: ISSUE-51: distinguished Chrome is not the answer (public comment)
- Re: ISSUE-65: testing throughout evolution of product (pubic comment)
- Re: ISSUE-64: \'where\' is less universal than \'how\' for drill-down (public comment)
- Re: ISSUE-63: consistency is good where it fits; it doesn\'t always fit; so undergird your consistency with a model (public comment)
- Re: ISSUE-62: User-adjustable step size is part of Universal Design (public comment)
- Re: ISSUE-61: Know you don\'t know your users (public comment)
- Re: ISSUE-60: reinvent Help and DoIt (public comment)
- Re: ISSUE-59: challenge and recover are essential; one presentation fits all -NOT (pubic comment)
- Re: ISSUE-58: simplicity is in the [diverse] world of the user (public comment)
- Re: ISSUE-57: qualify your interrupts; communicate subliminally always and through the focus rarely (public comment)
- Re: ISSUE-56: habit is little help, here (public comment)
- Re: ISSUE-55: realism is not universal, nor does ordinariness befit exceptional communications (public comment)
- Meeting record: WSC WG weekly 2007-04-11
- Re: ISSUE-54: user understanding is where it\'s at (pubic comment)
- Re: ISSUE-53: augment general usability wisdom because you are operating on a fringe (as is WAI) (Public Comnment)
- Re: ISSUE-52: benchmarking success -- it\'s out there (public comment)
- Re: ISSUE-51: distinguished Chrome is not the answer (public comment)
- RE: Safe Web Browsing Mode
- Re: ACTION-188 summarize robustness practices in terms of limitations on sites\\\\\\\\' freedom
- Re: ISSUE-50: present web security is not good enough; even \'though fixing that is out of scope for this deliverable (public comment)
- Re: ISSUE-49: trust in browser password cache needs to be better justified (pubic comment)
- RE: ISSUE-40: Drill-down access to all security information is not \'nice,\' it\'s required (by UAAG 1.0). (public comment)
Wednesday, 18 April 2007
- Re: ISSUE-48: platform and browser security out of scope - NOT (public comment)
- Re: ISSUE-47: define extension interface for content-scanning tools (public comment)
- Re: ISSUE-46: define extension interface for content-scanning tools (public comment)
- Re: ISSUE-45: full legal entity identification (is a must) (pubic comment)
- Re: ISSUE-44: beyond \'who\' (some day) (pubic comment)
- Re: ISSUE-43: don\'t disable assistive technology (public comment)
- Use Cases Again
- Re: ISSUE-42: Re: 3.2 Non-HTTP Web interactions (public comment)
- Re: ISSUE-41: limited guidance on presentation OK (public comment)
- Re: ISSUE-40: Drill-down access to all security information is not \'nice,\' it\'s required (by UAAG 1.0). (public comment)
- Re: ISSUE-39: cooperate with WAI-ARIA \'politeness\' (from public comments)
- Re: ISSUE-38: no safe haven in presentation space (from public comments)
- RE: Shared Public Knowledge
- RE: Shared Public Knowledge
- Re: ISSUE-37: qualify your interrupts (from public comments)
- RE: Shared Public Knowledge
- RE: Shared Public Knowledge
Tuesday, 17 April 2007
- RE: ISSUE-36: presentation norms -- no oneSizeFitsAll (from public comments)
- ACTION-175 - Summarize robustness practices for Firefox
- Re: ISSUE-36: presentation norms -- no oneSizeFitsAll (from public comments)
- regrets for 17 April call
- RE: Recommendations for "Lightening Discussions" at next week's meeting
- Re: ISSUE-35: information overload/underload -- no oneSizeFitsAll (public comment)
- Re: ISSUE-34: Formal studies don\'t cover disability access adequately, use experts too - (public comment)
- ACTION-194 refine UrlRecommendation
- ISSUE-65: testing throughout evolution of product (pubic comment)
- ISSUE-64: \'where\' is less universal than \'how\' for drill-down (public comment)
- ISSUE-63: consistency is good where it fits; it doesn\'t always fit; so undergird your consistency with a model (public comment)
- ISSUE-62: User-adjustable step size is part of Universal Design (public comment)
- ISSUE-61: Know you don\'t know your users (public comment)
- ISSUE-60: reinvent Help and DoIt (public comment)
- ISSUE-59: challenge and recover are essential; one presentation fits all -NOT (pubic comment)
- ISSUE-58: simplicity is in the [diverse] world of the user (public comment)
- ISSUE-57: qualify your interrupts; communicate subliminally always and through the focus rarely (public comment)
- ISSUE-56: habit is little help, here (public comment)
- ISSUE-55: realism is not universal, nor does ordinariness befit exceptional communications (public comment)
- ISSUE-54: user understanding is where it\'s at (pubic comment)
- ISSUE-53: augment general usability wisdom because you are operating on a fringe (as is WAI) (Public Comnment)
- ISSUE-52: benchmarking success -- it\'s out there (public comment)
- ISSUE-51: distinguished Chrome is not the answer (public comment)
Monday, 16 April 2007
- Re: comments on use-cases
- Agenda, Wednesay, 18 April, WSC Call
- RE: Recommendations for "Lightening Discussions" at next week's meeting
- Re: ISSUE-33: Charter retains authority Review of Note
- Re: ISSUE-33: Charter retains authority Review of Note
- ACTION-188 summarize robustness practices in terms of limitations on sites\\\\\\\\' freedom
- Futures area of our wiki
- ACTION-189: Cabfourm X.509v3/ PKIX guidelines
- Cabfourm X.509v3/ PKIX guidelines
- Re: Action item concerning mixed content / "what is a secure page"
- agenda item for this week? (Re: Action item concerning mixed content / "what is a secure page")
- RE: FW: .safe TLD idea from ICANN
- Re: FW: .safe TLD idea from ICANN
- Re: FW: .safe TLD idea from ICANN
- RE: ISSUE-29: Define user agent in wsc-usecases
- Re: FW: .safe TLD idea from ICANN
- Error handling proposal
- ISSUE-50: present web security is not good enough; even \'though fixing that is out of scope for this deliverable (public comment)
- ISSUE-49: trust in browser password cache needs to be better justified (pubic comment)
- ISSUE-48: platform and browser security out of scope - NOT (public comment)
- ISSUE-47: define extension interface for content-scanning tools (public comment)
Sunday, 15 April 2007
- [fwd] Re: Shared Public Knowledge (from: dan.schutzer@fstc.org)
- ISSUE-46: define extension interface for content-scanning tools (public comment)
- ISSUE-45: full legal entity identification (is a must) (pubic comment)
- ISSUE-44: beyond \'who\' (some day) (pubic comment)
- ISSUE-43: don\'t disable assistive technology (public comment)
- ISSUE-42: Re: 3.2 Non-HTTP Web interactions (public comment)
- ISSUE-41: limited guidance on presentation OK (public comment)
- ISSUE-40: Drill-down access to all security information is not \'nice,\' it\'s required (by UAAG 1.0). (public comment)
- ISSUE-39: cooperate with WAI-ARIA \'politeness\' (from public comments)
- ISSUE-38: no safe haven in presentation space (from public comments)
- ISSUE-37: qualify your interrupts (from public comments)
- ISSUE-36: presentation norms -- no oneSizeFitsAll (from public comments)
Saturday, 14 April 2007
Friday, 13 April 2007
- RE: Shared Public Knowledge
- Re: DNSSEC indicator
- Re: DNSSEC indicator
- RE: DNSSEC indicator
- RE: DNSSEC indicator
- Risky display-only use cases (ACTION-193)
- RE: Shared Public Knowledge
- Re: DNSSEC indicator
- ISSUE-35: information overload/underload -- no oneSizeFitsAll (public comment)
- ISSUE-34: Formal studies don\'t cover disability access adequately, use experts too - (public comment)
- ISSUE-33: Charter retains authority Review of Note
- DNSSEC indicator
- RE: ISSUE-29: Define user agent in wsc-usecases
Thursday, 12 April 2007
- RE: FW: sitekey auth busted on BoA site
- Re: FW: sitekey auth busted on BoA site
- RE: Shared Public Knowledge
- Re: Shared Public Knowledge
- "The Emperor's New Security Indicators"
- FW: sitekey auth busted on BoA site
- FW: .safe TLD idea from ICANN
- RE: Comments RE: The Working draft - section 6.2
- Re: ACTION-172 OPEN Map threat trees to use case dimensions Stuart Schechter 2007-04-04
- ISSUE-32: explain dynamic content better
- ISSUE-31: Correct scenarion 20 intended action
- ISSUE-30:
- ISSUE-29: Define user agent in wsc-usecases
- Re: Shared Public Knowledge
- Re: DNSSEC indicator
- RE: ISSUE-28: \"available security information\"
- Re: DNSSEC indicator
- RE: ACTION-196
- RE: DNSSEC indicator
- Meeting record: WSC WG weekly 2007-04-04
- Action item summary 2007-04-11
- Re: comments about note
- Re: Shared Public Knowledge
- RE: comments about note
- Re: Shared Public Knowledge
- Re: Shared Public Knowledge
- Re: Shared Public Knowledge
- RE: Shared Public Knowledge
- Re: Shared Public Knowledge
Wednesday, 11 April 2007
- Shared Public Knowledge
- Re: Firefox usability data on Location Bar
- Re: Proposed action item concerning robustness of user agent UIs
- Re: Available security information section clarification
- regrets for 11 April WSC call
- Regrets: 11 April, WSC Call
- Re: comments about note
Tuesday, 10 April 2007
- RE: comments about note
- RE: ISSUE-27: [editorial?] techniques for content based detection
- RE: comments on use-cases
- RE: Question re: Comments USE-Cases
- RE: Firefox usability data on Location Bar
- RE: Firefox usability data on Location Bar
- Re: ISSUE-27: [editorial?] techniques for content based detection
- RE: comments on use-cases
- RE: Comment on Note
- RE: Available security information section clarification
- RE: ISSUE-27: [editorial?] techniques for content based detection
- RE: Available security information section clarification
- RE: ISSUE-28: \"available security information\"
- RE: Agenda, Wednesay, 11 April, WSC Call
Monday, 9 April 2007
- Re: ISSUE-28: \"available security information\"
- Re: Agenda, Wednesay, 11 April, WSC Call
- Agenda, Wednesay, 11 April, WSC Call
- Re: Note review point - Scoping non-UI recs
- Re: Available security information section clarification
- Re: ISSUE-28: \"available security information\"
- Re: ISSUE-25: Participants need to review wsc-usecases
- Re: ISSUE-28: \"available security information\"
- Re: Available security information section clarification
- Re: status of my action items -- some due date adjustments
Sunday, 8 April 2007
- Re: Note review point - Scoping non-UI recs
- Re: Available security information section clarification
- Re: XSS out of scope
- Re: ISSUE-25: Participants need to review wsc-usecases
- ISSUE-28: \"available security information\"
- ISSUE-27: [editorial?] techniques for content based detection
- ISSUE-26: \"currently deployed security information\"
- status of my action items -- some due date adjustments
Friday, 6 April 2007
- RE: Comments RE: The Working draft - Section 7
- Re: XSS out of scope
- Re: XSS out of scope
- RE: ACTION-154 Track HTTP Auth related extensions Bill Doyle 2007-03-20
- Re: XSS out of scope
- ACTION-154 Track HTTP Auth related extensions Bill Doyle 2007-03-20
- RE: XSS out of scope
- Re: XSS out of scope
- Re: Available security information section clarification
- Re: Note review point - Scoping non-UI recs
- Re: Comment on Note
- Re: comments on use-cases
- Re: Comments RE: The Working draft - Section 7
- Re: Comments RE: The Working draft - section 6.5
- Re: Comments RE: The Working draft - section 6.2
- Re: Comments RE: The Working draft - section 42.
Thursday, 5 April 2007
- ISSUE-25: Participants need to review wsc-usecases
- Re: XSS out of scope
- Action item concerning mixed content / "what is a secure page"
- Proposed action item concerning robustness of user agent UIs
- Meeting record: WSC WG weekly 2007-03-28
- Action item summary 2007-04-04
- Re: diffmk
- Re: Firefox usability data on Location Bar
- Re: Comments about the note
- Comments about the note
- RE: review comments due April 4
- Available security information section clarification
- XSS out of scope
Wednesday, 4 April 2007
- RE: diffmk
- Firefox usability data on Location Bar
- Re: ACTION-149: FSTC's list of authentication techniques (BMA taxonomy)
- Note review point - Scoping non-UI recs
- Regrets
- Re: Question re: Comments USE-Cases
- Re: Question re: Comments USE-Cases
- Re: Question re: Comments USE-Cases
- RE: Question re: Comments USE-Cases
- Re: Question re: Comments USE-Cases
- RE: Question re: Comments USE-Cases
- Comments on Note
- RE: Question re: Comments USE-Cases
- Re: Question re: Comments USE-Cases
- Re: Question re: Comments USE-Cases
- Regrets... and editing
- Re: comments on use-cases
- RE: Recommendations for "Lightening Discussions" at next week's meeting
- Comment on Note
- RE: Recommendations for "Lightening Discussions" at next week's meeting
- RE: Recommendations for "Lightening Discussions" at next week's meeting
- Comments RE: The Working draft
Tuesday, 3 April 2007
- RE: Recommendations for "Lightening Discussions" at next week's meeting
- Re: ACTION-149: FSTC's list of authentication techniques (BMA taxonomy)
- Re: Question re: Comments USE-Cases
- Introduction to group
- Question re: Comments USE-Cases
- Re: Documenting status quo
- Fw: ACTION-156: List of privacy and security indicators
Monday, 2 April 2007
Tuesday, 3 April 2007
Monday, 2 April 2007
- Agenda, WEDNESDAY, 4 April, WSC Call
- Re: ISSUE-22: Rephrase favicon text
- Re: ACTION-106 Propose clarifying language for 8.2.5
- Robustness practices -- pending (but closed) actions.
- Re: Recommendations for "Lightening Discussions" at next week's meeting
- Re: What is a secure page?
- RE: Recommendations for "Lightening Discussions" at next week's meeting
- RE: Recommendations for "Lightening Discussions" at next week's meeting
- Rough rec proposal: revisiting past decisions
- RE: Recommendations for "Lightening Discussions" at next week's meeting
- Re: Rec Proposal: Separate in-browser editor for entry of Personally Identifiable Information (PII)
- Fw: ACTION-154 OPEN Track HTTP Auth related extensions Bill Doyle 2007-03-20
- Lightening Recommendations