I think it's important that any UI not be pejorative, as the current UI is. If the UI is pejorative, it will encourage people to just use plain HTTP and forgo the encryption and key-exchange offered by SSL. Firefox should not convey the impression that an HTTPS connection with an unknown CA is more dangerous than an HTTP connection.
It should not convey the impression that it's more, but it should not convey the impression that it's less.
Encryption protects you from unknown people eavesdropping on your conversation. How useful is that protection when you have no way of knowing who you are conversing with?
Gerv _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto
