Browsers, phishing, and user interface design

Browsers, phishing, and user interface design
Scott Granneman, 2006-06-05

Phishing works for so many reasons, we need to rethink browser and user interface design to provide some real-life security to the average user who doesn't see or understand the security cues.

Expand all | Post comment

Sure. Lots of ideas... 2006-06-05
Anonymous (2 replies)

Your First Statement Is Right 2006-06-06
Anonymous (1 replies)

No active e-mail. Period. Text, just like back in the days of Fidonet and in the original intent of Usenet.

If there's something fancier that needs to be done, throw it into a word processing document or some other appropriate format and attach it.

You suggested perhaps allowing image retrieval, but we've seen that corrupted images can be a vector. Even with a warning that the articles reflects will do no good at all.

No active e-mail, period. End of solution.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/405/33695#33695

Re: Your First Statement Is Right 2006-06-07
Anonymous (1 replies)

Re: Re: Your First Statement Is Right 2006-06-08
Anonymous

Re: Sure. Lots of ideas... 2006-06-24
Anonymous

Browsers, phishing, and user interface design 2006-06-06
Anonymous

Browsers, phishing, and user interface design 2006-06-06
TJ

Browsers, phishing, and user interface design 2006-06-06
Anonymous (1 replies)

Re: Browsers, phishing, and user interface design 2006-06-06
Anonymous (2 replies)

Re: Re: Browsers, phishing, and user interface design 2006-06-08
Anonymous

Re: Re: Browsers, phishing, and user interface design 2006-06-16
Anonymous

Browsers, phishing, and user interface design 2006-06-06
infamous41md

Browsers, phishing, and user interface design 2006-06-06
Todd Knarr

Email should be as in the begining: text ONLY 2006-06-07
Anonymous