On Mon, Jul 21, 2014 at 7:15 PM, Michal Zalewski <lcam...@google.com> wrote:
> Indeed. Instinctively [*], I think that a prominent always-on > indicator - say, an icon alternating between a red peering eye and a > green / gray closed lock - is strictly better than showing nothing for Tangential, fun note: felt, et al. found that ~50% of users thought a green lock was *open*, hence unsafe — green means you can go, through the locked door, while red means the lock is securely locked. Like an airplane toilet... So, it seems we're mixing the Lock metaphor with the Traffic Light metaphor, and that mixing them does not make sense. I have proposed dropping the lock part and just going with red, yellow, and green colors. No more lock. Or, like Safari, just the lock, no color. But that doesn't get us the 3-state indicator I think we need. (Although that need is, ideally, temporary.) > HTTP and then having a DHS-grade fifteen-level color-coded threat > level system for HTTPS. The latter mostly teaches people that the > browser always cries wolf - and it leaves them vulnerable to > sslstrip-type attacks. Agree. > We should also explicitly and very vocally tell website owners is that > if their stuff is important, they *need* to start using HSTS. Agree. _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
