Re: obscuring SCI from Mary Ellen Zurko on 2009-11-17 (public-wsc-wg@w3.org from November 2009)

From: Mary Ellen Zurko <mzurko@us.ibm.com>
Date: Tue, 17 Nov 2009 07:27:41 -0500
To: "Mary Ellen Zurko" <Mary_Ellen_Zurko@notesdev.ibm.com>
Cc: "public-wsc-wg@w3.org" <public-wsc-wg@w3.org>
Message-ID: <OF189E50F3.A224A7C1-ON85257671.00443B64-85257671.00445975@LocalDomain>

While I'm concerned about the loopholes in both cases, I find the 
arguments around A to be pretty compelling. So I'm moving my vote to A. 
Calling for consensus; any more arguments? The proposal is we change

The part of the spec that this might violate is 7.4.1, first paragraph: 
Web user agents <
http://www.w3.org/2006/WSC/drafts/rec/rewrite.html#def-user-agent> MUST 
prevent web content from obscuring, hiding, or disabling user interfaces 
that display security context information. 
to

Web user agents<
http://www.w3.org/2006/WSC/drafts/rec/rewrite.html#def-user-agent> MUST 
prevent web content from obscuring, hiding, or disabling user interfaces 
that display security context information without user interactions. 


If there are no further arguments, I'll spin up an editorial action to 
implement this change. 

          Mez

Received on Tuesday, 17 November 2009 12:27:10 UTC