Linked by Thom Holwerda on Fri 29th Aug 2008 13:23 UTC, submitted by irbis
Mozilla & Gecko clones Firefox 3.0, released not too long ago, was generally well-received. It added a load of new features, while also providing much-needed speed improvements and better memory management. Some new features, however, have met more resistance - one of them is the rather complicated user interface thrown at users when they reach a website with an invalid or expired SSL certificate.
Thread beginning with comment 328528
To read all comments associated with this story, please click here.
SSL Security
by AndrewDubya on Fri 29th Aug 2008 16:12 UTC
AndrewDubya
Member since:
2006-10-15

Ok, I can see them adding an option to make it easier, but the complaint doesn't sound justified to me.

People do not know how to protect themselves on the Internet. What exactly do you mean when you say you were at a loss? The entire point of it was to make people _actually_ read the warning messages. Sure I was confused about the interface until I read it, and that was The Damned Point. Sometimes, usability is the opposite of what you want. Sometimes, you just need a nice confusing jolt to make the user pay attention to the message instead of letting them drift through the process.

Again, normal users _need_ this. It's a huge step toward making the web somewhat safer. If they want to make it easier, it should be through a buried browser option.

EDIT: Additionally, I'm sure you can add your own authority if you self-sign.

Edited 2008-08-29 16:14 UTC

Reply Score: 2

RE: SSL Security
by VistaUser on Fri 29th Aug 2008 16:30 in reply to "SSL Security"
VistaUser Member since:
2008-03-08

There is a usability issue - the site looks broken and not many people would wait to read the text.

It may be, but not in the same way that "page cannopt be found" means that the page is not there.

When I first moved to the Firefox 3 betas, it took me a while to realise that it was improperly signed sites causing the issue and NOT that the site was down.

A page similar to the the red page "potential malicious site page" would have been better as it does not look the same as a 404.

Reply Parent Score: 4