undefined | Better HN

0 pointsScott_Helme_6y ago0 comments

That's not what I asked, that's a straw man.

Browser vendors have tested the efficacy of the current EV indicator, resulting in the current action.

If you feel that testing an alternative indicator consistent with other platforms is a good idea, then perhaps that's where the CAs should start their research.

0 comments

1 comments · 1 top-level

nailer6y ago

>>>> browsers makers need to ensure their security UX helps people understand what they're connecting to

>>> But, didn't browser vendors do that

>> No, browser vendors have not tested verification markers that are consistent with other platforms.

> That's not what I asked, that's a straw man.

Doesn't seem like much of a straw man to me. Investigating whether browser security UX helps people understand what they're connecting to logically includes looking at designs other than the current one.

> then perhaps that's where the CAs should start their research.

Yes. And browsers too.

j / k navigate · click thread line to collapse