Browsers, phishing, and user interface design

Browsers, phishing, and user interface design
Scott Granneman, 2006-06-05

Phishing works for so many reasons, we need to rethink browser and user interface design to provide some real-life security to the average user who doesn't see or understand the security cues.

Expand all | Post comment

Sure. Lots of ideas... 2006-06-05
Anonymous (2 replies)

NO ACTIVE EMAIL.

That means... no working links. Image retrieval... maybe; but only optionally, and with a verification before loading.

HTML should only be used as a descriptive language in email messages, nothing else.

The next idea, of course, is to use E-mail standards. Text only. No HTML. No MS formatted attachments.

No authomatic "HELPER" applications other than display only.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/405/33685#33685

Your First Statement Is Right 2006-06-06
Anonymous (1 replies)

Re: Your First Statement Is Right 2006-06-07
Anonymous (1 replies)

Re: Re: Your First Statement Is Right 2006-06-08
Anonymous

Re: Sure. Lots of ideas... 2006-06-24
Anonymous

Browsers, phishing, and user interface design 2006-06-06
Anonymous

Browsers, phishing, and user interface design 2006-06-06
TJ

Browsers, phishing, and user interface design 2006-06-06
Anonymous (1 replies)

Re: Browsers, phishing, and user interface design 2006-06-06
Anonymous (2 replies)

Re: Re: Browsers, phishing, and user interface design 2006-06-08
Anonymous

Re: Re: Browsers, phishing, and user interface design 2006-06-16
Anonymous

Browsers, phishing, and user interface design 2006-06-06
infamous41md

Browsers, phishing, and user interface design 2006-06-06
Todd Knarr