[widgets] View modes security considerations
|
View:
New views
1 Messages
—
Rating Filter:
Alert me
|
 |
[widgets] View modes security considerations
by David Rogers-5
::
Rate this Message:
Some parts of this message have been removed.
Learn more about Nabble's security policy.
Hi there, As promised and discussed this afternoon, some basic text
for a Security Considerations section in the widgets view modes spec: “ Security Considerations Implementers of this specification are asked to take into
account and design appropriate measures to deal with the following points for
the purpose of user security: Widgets could be intentionally designed to visually dupe or
confuse the user for social engineering purposes. Some methods that could be
used to do this could be: ·
widgets that the user cannot see (full-screen
invisible widgets in front of other things on the screen, such as a PIN-code
entry) ·
widgets that have a size smaller than the user
can reasonably see (e.g. a 0.00001 x 0.00001 widget) ·
widgets that have no chrome that could
masquerade as some other existing object on the screen (for example a lock and
key) “ Thanks, David. David
Rogers |
| Free embeddable forum powered by Nabble | Forum Help |
