`Identified by` <CA> technique of TrustBar adopted by IE, other browsers...
Amir Herzberg
herzbea at macs.biu.ac.il
Thu Nov 24 04:58:40 EST 2005
IE 7 implements some of TrustBar and FF improvements to security
indicators. Specifically, they now color-code the location bar and
added, in SSL/TLS pages, the name of the site and the `Identified by`
<name of CA> - like TrustBar.
They do not yet implement some of our other mechanisms, including the
petnaming (allowing users to select their own name or logo which will be
automatically displayed on entering a specific site), and the `random
training exercise attacks`. OTOH, at least regarding the last
mechanisms, we definitely agree it is not yet ready for prime time (and
hope soon to provide a better version of it).
Some relevant links:
http://blogs.msdn.com/ie/archive/2005/11/21/495507.aspx - IE developer
describing the improved security UI, with some screen shots
http://dot.kde.org/1132619164/ - KDE developer describes a meeting of
developers of four major browsers (IE, FF, Opera, KDE) where they agreed
to adopt these ideas
http://AmirHerzberg.com/TrustBar - my page for info and downloads of
TrustBar... TrustBar is a public domain, open source project.
--
Best regards,
Amir Herzberg
Associate Professor
Department of Computer Science
Bar Ilan University
http://AmirHerzberg.com
Try TrustBar - improved browser security UI:
http://AmirHerzberg.com/TrustBar
Visit my Hall Of Shame of Unprotected Login pages:
http://AmirHerzberg.com/shame
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list