5
edits
Firefox/Feature Brainstorming:Security: Difference between revisions
Firefox/Feature Brainstorming:Security (view source)
Revision as of 22:43, 7 December 2006
, 7 December 2006no edit summary
No edit summary |
No edit summary |
||
| Line 46: | Line 46: | ||
* new approach: allow certificate whitelisting. | * new approach: allow certificate whitelisting. | ||
** Organizations could sign certificates not just (as today) in order to confirm the identity but to confirm that a web site belongs to the "good guys". Users could mark the certificate of such an organization as trustworthy. When displaying a site which has been approved that way the browser should mark it somehow (a green address field e.g.). This is just an infrastructure idea. If Firefox supports that people will start to offer whitelists. Whitelisting makes more sense than blacklisting - it's easier and safer. There are rather few web sites which are potential phishing targets so it should work. | ** Organizations could sign certificates not just (as today) in order to confirm the identity but to confirm that a web site belongs to the "good guys". Users could mark the certificate of such an organization as trustworthy. When displaying a site which has been approved that way the browser should mark it somehow (a green address field e.g.). This is just an infrastructure idea. If Firefox supports that people will start to offer whitelists. Whitelisting makes more sense than blacklisting - it's easier and safer. There are rather few web sites which are potential phishing targets so it should work. | ||
** Additionally, rather than just using a green address field: once a website is verified as trusted, the domain matches the certificate, the trusted domain's logo could be requested from a standard location on the trusted domain's server. This logo should be of a standard size and displayed near the browser acitivity icon. The intention is to give the impression of a holographic imprint of authenticity. Logo's should be tracked by root certificate authorities to ensure no two are similar.([[User:Randomly|Randomly]] 14:43, 7 December 2006 (PST)) | |||
</td><td> | </td><td> | ||
certificate whitelisting - in German [http://www.hauke-laging.de/ideen/bsi-zertifikatsplugin/] | certificate whitelisting - in German [http://www.hauke-laging.de/ideen/bsi-zertifikatsplugin/] | ||