[tbb-bugs] #23247 [Applications/Tor Browser]: Communicating security expectations for .onion: what to say about different padlock states for .onion services
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Dec 12 19:19:15 UTC 2017
#23247: Communicating security expectations for .onion: what to say about different
padlock states for .onion services
--------------------------------------+--------------------------
Reporter: isabela | Owner: tbb-team
Type: project | Status: new
Priority: Medium | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Resolution:
Keywords: ux-team | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
--------------------------------------+--------------------------
Comment (by asn):
Replying to [comment:23 tom]:
> I spoke with Mozilla's crypto engineering team - they're not aware of
any padlock deprecation, so I think the design guide is a separate thing.
ACK thanks for asking. That's good. This means we can continue considering
onions in the URL bar.
BTW, you guys that are at All Hands this week, would you be able to figure
out the tradeoffs about onion color on HTTP vs self-signed HTTPS? There is
a debate in the end of the pad that might help you. All Hands seems like a
good place to figure this debate out!
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/23247#comment:24>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tbb-bugs
mailing list