W3C home > Mailing lists > Public > public-wsc-wg@w3.org > March 2008

ACTION-393: Rerwite trust indicators in content text.

From: Thomas Roessler <tlr@w3.org>
Date: Fri, 14 Mar 2008 18:23:21 +0100
To: public-wsc-wg@w3.org
Message-ID: <20080314172321.GN99946@iCoaster.does-not-exist.org>

I've rephrased the indicators in content text along the lines of the
discussion at our 13 February call [1]:

Web Security Context: Experience, Indicators, and Trust
Editor's Draft 14 March 2008
$Revision: 1.191 $ $Date: 2008/03/14 17:21:54 $

>9.1 Do not use security indicator images to suggest trustworthiness
>Web content MUST NOT use visual representations of Web user agent
>security indicators to suggest trustworthiness.
>Renderings of Web user agent trust indicators (e.g., copies of
>common padlock icons) are occasionally used as part of a messaging
>that tries to suggest trustworthiness to users. While these
>indicators are often surprisingly successful messaging tools, that
>success comes at a price: It trains users to give indicators in
>content precedence over indicators in chrome. This lessens the
>effectiveness of any chrome indicators for the sites that re-use
>them as part of their content; it also has a broader training effect
>that can be capitalized upon by bad actors.

  -- http://www.w3.org/2006/WSC/drafts/rec/rewrite.html#security-indicator-images

1. http://lists.w3.org/Archives/Public/public-wsc-wg/2008Feb/0069.html
Thomas Roessler, W3C  <tlr@w3.org>
Received on Friday, 14 March 2008 17:23:52 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 19:36:54 UTC