Re: Draft finding - "Transitioning the Web to HTTPS"

On Fri, Dec 12, 2014 at 1:12 AM, Mark Nottingham <mnot@mnot.net> wrote:
>> On 11 Dec 2014, at 11:46 pm, Henri Sivonen <hsivonen@hsivonen.fi> wrote:
>> On Tue, Dec 9, 2014 at 1:28 AM, Mark Nottingham <mnot@mnot.net> wrote:
>>> Finally, imposing policy in endpoints implies creation of a browser API for doing so.
>>> The TAG encourages work in this area, provided there is a good chance of
>>> implementation and a reasonable outcome.
>
> One way is to improve the UX for inserting a new root into the trust store; it's pretty bad now.
>
> Another way is to provide APIs (probably not Web APIs as most people think of them, but rather extension APIs)

If you do not actually mean web-exposed APIs, I recommend talking
about browser UI instead. Using "API" to mean these two things is
super confusing.


-- 
https://annevankesteren.nl/

Received on Friday, 12 December 2014 09:08:16 UTC