Re: ACTION-571: Draft text about showing unrelated identity signals

Joe Steele wrote:
> >From the last meeting, in reference to comment #2 from one of the reviewers (http://lists.w3.org/Archives/Public/public-usable-authentication/2009Mar/0001.html) Mez and I came up with the following text for a new section 7.3:
>
> "Browsers SHOULD NOT display security sensitive information for page content which the user is not interacting with. Security sensitive information includes security indicators, dialogs prompting for user credentials, script errors and dialogs."
>
> Please suggest improvements to both wording and content.
>
> Joe Steele
>
>   
Additionally, the text can explicitly mention tabs in browsers that form 
the common scenario where this is important?

Received on Thursday, 2 April 2009 18:18:06 UTC