I think that you'll need to define a number of levels of security, and decide how to distinguish them in the Firefox GUI:
- Unauthenticated/Unencrypted [http] - Unauthenticated/Encrypted [https ignoring untrusted cert warning] - DNS based auth/Encrypted [TLSA certificate hash in DNS] - Ditto with TLSA/DNSSEC - Trusted CA Authenticated [Any root CA] - EV Trusted CA [Special policy certificates] Ironically, your problem is more a GUI thing. All the security technology you need actually exists already... _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform
