- From: Thomas Roessler <tlr@w3.org>
- Date: Mon, 22 Dec 2008 15:41:58 +0100
- To: WSC WG <public-wsc-wg@w3.org>
Section 6.2.G is the following piece of additional security information: > The information sources SHOULD make the following security context > information available: ... > Whether a Web page is TLS-protected, whether the protection is weak > or strong, and the reasons for the value of the protection According to the relevant minutes [1], I said on 24 October that I could see two different ways of going about this one. From the notes of the discussion, I think the choice was between the following two: > Whether a Web page is TLS-protected, and what strength this > protection has or: > What protection level is represented by the [ref TLS indicator]; > If the Web page is [ref weakly] TLS-protected, then, what conditions > cause the protection to be weak (e.g., bad algorithms, mixed > content, ...) I'm not 100% happy with this, and would appreciate feed-back. 1. http://lists.w3.org/Archives/Member/member-wsc-wg/2008Dec/0004.html -- Thomas Roessler, W3C <tlr@w3.org>
Received on Monday, 22 December 2008 14:42:08 UTC