From: Ben Laurie <[email protected]> Sent: Friday, August 16, 2019 9:33 AM To: Doug Beattie <[email protected]> Cc: Jonathan Rudenberg <[email protected]>; Peter Gutmann <[email protected]>; [email protected] Subject: Re: Fwd: Intent to Ship: Move Extended Validation Information out of the URL bar On Fri, 16 Aug 2019 at 14:31, Doug Beattie via dev-security-policy <[email protected] <mailto:[email protected]> > wrote: DB: Yes, that's true. I was saying that phishing sites don't use EV, not that EV sites don't get phished Surely this shows that EV is not needed to make phishing work, not that EV reduces phishing? [DB] It should show that users are safer when visiting an EV secured site. -- I am hiring! Formal methods, UX, SWE ... verified s/w and h/w. #VerifyAllTheThings. https://g.co/u58vjr https://g.co/adjusu (Google internal)
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
