From: Ben Laurie <b...@google.com> Sent: Friday, August 16, 2019 9:33 AM To: Doug Beattie <doug.beat...@globalsign.com> Cc: Jonathan Rudenberg <jonat...@titanous.com>; Peter Gutmann <pgut...@cs.auckland.ac.nz>; mozilla-dev-security-pol...@lists.mozilla.org Subject: Re: Fwd: Intent to Ship: Move Extended Validation Information out of the URL bar On Fri, 16 Aug 2019 at 14:31, Doug Beattie via dev-security-policy <dev-security-policy@lists.mozilla.org <mailto:dev-security-policy@lists.mozilla.org> > wrote: DB: Yes, that's true. I was saying that phishing sites don't use EV, not that EV sites don't get phished Surely this shows that EV is not needed to make phishing work, not that EV reduces phishing? [DB] It should show that users are safer when visiting an EV secured site. -- I am hiring! Formal methods, UX, SWE ... verified s/w and h/w. #VerifyAllTheThings. https://g.co/u58vjr https://g.co/adjusu (Google internal)
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy