- From: <michael.mccormick@wellsfargo.com>
- Date: Thu, 24 May 2007 18:25:25 -0500
- To: <public-wsc-wg@w3.org>
- Message-ID: <8A794A6D6932D146B2949441ECFC9D6803608AA4@msgswbmnmsp17.wellsfargo.com>
As some of you know, this VeriSign announcement provoked considerable debate among members of the CAB Forum. Cutting out the religious feelings and political agendas that clutter the debate, there does seem to be a key issue web security display at stake: Should web security context displays in chrome be rendered by base web agent software only, or is it acceptable for plug-ins to render it too? If plug-ins render it, what controls need to be in place to ensure this doesn't become a new spoofing vector for phishing perpetrators? If this group is willing to tackle it, I believe this issue is probably in scope of the WSC charter. Mike _____ From: public-wsc-wg-request@w3.org [mailto:public-wsc-wg-request@w3.org] On Behalf Of McCormick, Mike Sent: Wednesday, May 23, 2007 3:22 PM To: dan.schutzer@fstc.org; sam.phillips@bankofamerica.com; versace@comcast.net; Chuck@Interisle.net; todd.inskeep@bankofamerica.com; Bob.Pinheiro@fstc.org; Dan.Houser@huntington.com; Tiggas, Mark; matt.barrington@wachovia.com; Pelton, Douglas S.; smb@cs.columbia.edu; solod@citigroup.com; Palmer, Pete; chris.nautiyal@fstc.org; tom.keane@wachovia.com; john.fricke@fstc.org; Lyman@Interisle.net; richard.a.parry@jpmchase.com; Stan.Szwalbenest@chase.com Cc: public-wsc-wg@w3.org Subject: FW: VeriSign offers IE7-style EV-SSL "green bar" to Firefox users Importance: Low http://www.pcmag.com/article2/0,1895,2134557,00.asp <http://www.pcmag.com/article2/0,1895,2134557,00.asp>
Received on Thursday, 24 May 2007 23:25:44 UTC