Duane wrote: > Since phishing exists happily with no SSL, why would they start using > SSL all of a sudden now that EV's are being discussed? > Somehow I have to agree with this statement. EV certificates solve perhaps partially a certification problem, not necessarily the pishing problem. > This will do very little for security for anyone as it fails to address > the real problems and tries to attack a niche situation that isn't under > attack... > > I'm a little confused here, can someone please explain to me how this is > supposed to help the vast majority of users? > > Hence our proposal for better indications and information of subscriber and issuer details. Maybe different colors (including green) isn't the best way to go after all.
To Grev: We have some ideas and will put up those additional ideas and proposals later today for consideration. -- Regards Signer: Eddy Nigg, StartCom Ltd. Phone: +1.213.341.0390
_______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
