Thanks for everyone's thoughts. It sounds like doing something with the Display and training users on it is the consensus.
-- Terry -----Original Message----- From: dmarc [mailto:[email protected]] On Behalf Of John Levine Sent: Friday, December 12, 2014 10:15 AM To: [email protected] Cc: [email protected] Subject: Re: [dmarc-ietf] Phishing attacks on the Display From >>> 1. Hotmail/outlook.com puts a green shield in the web UX in front of >>> trusted senders >who authenticate. Is that what you mean? >> >> Only sort of. That's ad-hoc since each recipient system has their private >> list of >green-bar-worthy senders. (I mean, if I wanted to get into it, how would I do >so?) > >It's also difficult for my bank to do any useful user education about that if >it's only >supported by one freemail provider. It would need to be supported by most >major MUAs - >with compatible implementations and a consistent UI - before they could start >that >process. Right. To be useful it has to be consistent and well-publicised. Green bar certs in browsers are the best analogy I can think of. R's, John _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
