- From: Thomas Roessler <tlr@w3.org>
- Date: Mon, 24 Sep 2007 09:00:49 +0200
- To: Web Security Context Working Group Issue Tracker <sysbot+tracker@w3.org>
- Cc: public-wsc-wg@w3.org
On 2007-09-18 12:59:30 +0000, Web Security Context Working Group Issue Tracker wrote: > ISSUE-108: Should Safe Browsing mode restrict users to a specific > set of sites? [Techniques] > > http://www.w3.org/2006/WSC/track/issues/ > > Raised by: Thomas Roessler > On product: Techniques > > In the current draft: > > Editor's Draft $Date: 2007/09/18 12:50:20 $ > > safe browsing mode includes a requirement that Web user agents > only be able to access EV (or EV-like) sites when in Safe > Browsing Mode. From discussions, this is one possible approach; > the aim seems to be to have some whitelist of truted sites that > can be accessed in this mode. > > Questions: > > - Should such a whitelist exist at all? > - If it exists, are EV certificates the right criterion? To summarize the current discussion, I think what I'm hearing is that (a) the answer to the second question is a pretty unanimous "no", and (b) we still need to have the more general conversation about the first one. I'll therefore change the editor's draft to include much more explicit language on the whitelist concept than the current one. We can then see where discussion of that concept takes us. Regards, -- Thomas Roessler, W3C <tlr@w3.org>
Received on Tuesday, 25 September 2007 05:51:40 UTC