- From: Thomas Roessler <tlr@w3.org>
- Date: Fri, 14 Mar 2008 18:23:21 +0100
- To: public-wsc-wg@w3.org
I've rephrased the indicators in content text along the lines of the discussion at our 13 February call [1]: Web Security Context: Experience, Indicators, and Trust Editor's Draft 14 March 2008 $Revision: 1.191 $ $Date: 2008/03/14 17:21:54 $ >9.1 Do not use security indicator images to suggest trustworthiness > >Web content MUST NOT use visual representations of Web user agent >security indicators to suggest trustworthiness. > >Renderings of Web user agent trust indicators (e.g., copies of >common padlock icons) are occasionally used as part of a messaging >that tries to suggest trustworthiness to users. While these >indicators are often surprisingly successful messaging tools, that >success comes at a price: It trains users to give indicators in >content precedence over indicators in chrome. This lessens the >effectiveness of any chrome indicators for the sites that re-use >them as part of their content; it also has a broader training effect >that can be capitalized upon by bad actors. -- http://www.w3.org/2006/WSC/drafts/rec/rewrite.html#security-indicator-images 1. http://lists.w3.org/Archives/Public/public-wsc-wg/2008Feb/0069.html -- Thomas Roessler, W3C <tlr@w3.org>
Received on Friday, 14 March 2008 17:23:52 UTC