[tbb-bugs] #23247 [Applications/Tor Browser]: Communicating security expectations for .onion: what to say about different padlock states for .onion services
Tor Bug Tracker & Wiki
blackhole at torproject.org
Mon May 21 15:36:47 UTC 2018
#23247: Communicating security expectations for .onion: what to say about different
padlock states for .onion services
-------------------------------------------------+-------------------------
Reporter: isabela | Owner:
| pospeselr
Type: project | Status:
| assigned
Priority: High | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Resolution:
Keywords: ux-team, tor-hs, | Actual Points:
TorBrowserTeam201805 |
Parent ID: | Points:
Reviewer: | Sponsor:
-------------------------------------------------+-------------------------
Comment (by asn):
Replying to [comment:45 pospeselr]:
>
> It's easy enough to add/modify text here, but the question is **what**
text to put here? Preferably something succinct I think (so that it can
be added as an addendum to HTTPS Onion services as well).
>
> Any thoughts on this?
How about starting with something simple like `Connection encrypted via
onion services` or `Connection encrypted using onion services`?
I know it doesn't specify the actual ciphers like the `HTTPS Onion` page,
but perhaps we don't need to be perfect from the beginning. If we want to
specify ciphers we need to distniguish between v2 and v3 and list the
right ciphers for each one. Let me know if you want to do that.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/23247#comment:47>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tbb-bugs
mailing list