I just read your page, great stuff. Now, are comments solicited for this group, a bugzilla page, or in private?
Anywhere's good. My blogpost has some discussion: http://weblogs.mozillazine.org/gerv/archives/007508.html
I'm not sure what you are saying here. If it is "branding
doesn't work" then check the Nikes. If it is that "branding
doesn't work for security" then check Volvo.
No, it's 'CA branding will never become a buying factor which compares in importance to things like "ooh, shiny gadget!" and "Wow, I can get it $10 cheaper here"'.
Putting logos in the UI won't even come close to generating the amount of awareness among the general user population that you'd need.
It will, the day VeriSign issues a cert to Paypall.com ...
They'll get trashed in the press whether they are branded in the browser UI or not. And secure sites may well get their next cert from another provider, because they are afraid Verisign might issue a cert to www.mys1te.com.
The people who need to get with the branding program, if anyone, are the people who _buy_ certs - the website owners - not the users. That's where the money is.
Consider this: Shmoo wasn't anything we didn't already know. Yet it caused a firestorm. Why?
Because browser security stories sell online newspapers?
Why are users shifting to Firefox? Because of good security *and* a good brand. What tips the balance between Konqueror and Firefox? Brand is a big part of it...
Absolutely. I'm not saying branding doesn't work. I'm saying that there's no way a small corner of the browser UI can generate enough brand awareness to make CA brand a purchasing factor.
Gerv _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto
