Tyler Close wrote:
I've written a paper that argues that global namespaces, such as
those used in the current PKI and in Amir's proposal, are actually a
cause of
Tyler, we allow the user to select a logo or icon, so this is a local
identifier, just like your petnames... Indeed, the site could
Amir Herzberg wrote:
Tyler, we allow the user to select a logo or icon, so this is a local
identifier, just like your petnames... Indeed, the site could also
suggest the logo or present a logo certified by some authority, but this
is only for convenience
Are you sure it's just a convenience
Frank Hecker wrote:
Amir Herzberg wrote:
We have created a Mozilla extension that creates a secure, Trusted
Logo and Credentials Area, which displays logos and other credentials
The proposal is described at:
Protecting (even) Naïve Web Users, or: Preventing Spoofing and
Establishing
I've written a paper that argues that global namespaces, such as those
used in the current PKI and in Amir's proposal, are actually a cause of
phishing attacks, not a solution to them. The paper further argues that
the phishing problem is best solved without creating any central
authorities
Amir Herzberg wrote:
We have created a Mozilla extension that creates a secure, Trusted Logo
and Credentials Area, which displays logos and other credentials of the
site. We believe this helps protect web users, even naive users, against
spoofing and phishing attacks. We are still playing with
Amir Herzberg wrote:
We have created a Mozilla extension that creates a secure, Trusted Logo
and Credentials Area, which displays logos and other credentials of the
site. We believe this helps protect web users, even naive users, against
spoofing and phishing attacks. We are still playing with