[OpenID] popup protocol UX? Re: FB Connect, OpenID and UX
Christian Scholz / Tao Takashi (SL)
tao.takashi at googlemail.com
Tue Dec 16 00:58:13 UTC 2008
On Tue, Dec 16, 2008 at 1:52 AM, Allen Tom <atom at yahoo-inc.com> wrote:
> Martin Atkins wrote:
>> Furthermore, Yahoo! offers the ability to add a "Sign-in Seal" which is
>> stored in a cookie on your client rather than on the server as a
>> mechanism to detect phishing.
>>
> More info about the Sign-in Seal is here:
> https://protect.login.yahoo.com/
>
>
>> Whether or not users actually use it or check it is of course debatable
>
> The challenge is to educate users about it. I think the best argument
> against the sign-in seal is that users who have one may be susceptible
> to phishing if the phisher displays a "temporarily unavailable" Sign-in
> Seal. However, our educational screens do say that if the customized
> Sign-in Seal isn't there, they're probably getting phished.
So I guess if they use the site seal they know what phishing is. But
maybe let's start one step before: Do people know what it actually
means? Is there some research on that?
-- Christian
--
Christian Scholz
Tao Takashi (Second Life name)
taotakashi at gmail.com
Blog/Podcast: http://mrtopf.de/blog
Company: http://comlounge.net
Tech Video Blog: http://comlounge.tv
IRC: MrTopf/Tao_T
More information about the general
mailing list