On Friday, July 19, 2019 at 10:53:16 AM UTC-5, Matthew Hardeman wrote: > While possible, that seems unlikely. Corporates are, in general, not > trying to hide when this is being done. > > In fact, there are lots of good legal liability reasons why they should > want their users to be constantly reminded.
FWIW, we had folks who make TLS interceptors *explicitly* ask us for this notification/display capability in Internet Explorer circa 2009 because they had customers in regulatory environments (aka Europe) where there's a specific legal requirement that users be notified when their connections are being monitored, and it was felt that indicating this plainly in the browser's security UX was a natural place to do it. (We did not, ultimately, deliver on such a feature). _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
