From: Ben Laurie <>
Sent: Friday, August 16, 2019 9:33 AM
To: Doug Beattie <>
Cc: Jonathan Rudenberg <>; Peter Gutmann 
Subject: Re: Fwd: Intent to Ship: Move Extended Validation Information out of 
the URL bar

On Fri, 16 Aug 2019 at 14:31, Doug Beattie via dev-security-policy 
<> > wrote:

DB: Yes, that's true.  I was saying that phishing sites don't use EV, not
that EV sites don't get phished

Surely this shows that EV is not needed to make phishing work, not that EV 
reduces phishing?

[DB] It should show that users are safer when visiting an EV secured site.


I am hiring! Formal methods, UX, SWE ... verified s/w and h/w. 

(Google internal)

Attachment: smime.p7s
Description: S/MIME cryptographic signature

dev-security-policy mailing list

Reply via email to