[OpenID] Another Client-side Password Phishing Mitigation Idea
Dmitry Shechtman
damnian at gmail.com
Sun Jan 21 19:02:53 UTC 2007
There are a few DISadvantages to this proposal:
* it works on all password forms, not just for OpenID
* it forcefully disrupts the flow of the user
FUNCTION warning-dialog.onshow()
IF warning-dialog.contains-dont-show-again-checkbox()
dont-show-again-checkbox.select()
ok-button.click
RETURN ok
END IF
IF anti-phishing-mitigation.is-addon()
anti-phishing-mitigation.uninstall()
RETURN ok
END IF
browser.uninstall()
RETURN not-ok
END FUNCTION
What's wrong with an identity manager?
Regards,
Dmitry
=damnian
More information about the general
mailing list