Can you help develop crypto anti-spoofing/phishing tool ?
Daniel Carosone
dan at geek.com.au
Wed Feb 2 19:00:36 EST 2005
On Wed, Feb 02, 2005 at 10:11:54PM +0200, Amir Herzberg wrote:
> We develop TrustBar, a simple extension to FireFox (& Mozilla), that
> displays the name and logo of SSL protected sites, as well as of the CA
> (so users can notice the use of untrusted CA).
Other merits of the idea aside, if the user knows the CA is untrusted,
what's it doing in the browser's trust path?
If we're going to assume users are capable of making this decision, we
should make it easier for them to express that decision properly
within the existing mechanism.
--
Dan.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 186 bytes
Desc: not available
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20050203/0f4d5860/attachment.pgp>
More information about the cryptography
mailing list