Closed Bug 1059185 Opened 10 years ago Closed 4 years ago

[UX] Redesign of certificate error page

Categories

(Firefox :: Security, defect)

Product:
Firefox
Component:
Security
Version:
33 Branch
Platform:
x86
All
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED WORKSFORME

People

(Reporter: phlsa, Unassigned)

References

(Blocks 1 open bug)

Details

(Whiteboard: [ux])

Attachments

(5 files)

Firefox current state
126.78 KB, image/png
Details
Chromes version
107.23 KB, image/png
Details
Operas version
812.71 KB, image/png
Details
IEs version
68.49 KB, image/png
Details
about:blocked current design.png
41.41 KB, image/png
Details
Attached image Firefox current state 
The current certificate error page has a very different style than most other in-content pages in the browser.
It could also be clearer about what is happening.
Flags: firefox-backlog+
Attached image Operas version 
I think this is the worst design of any browser (Safaris is almost identical) since it screams »clickthrough«
Attached image IEs version 
IMO IE does the best job in terms of clarity, even though their copy is also a little jargony.
Sorry for the German screenshot – I only have a German windows version.
QA Whiteboard: [qa-]
Whiteboard: [ux]
If we are going to make any changes to this page, we need to be careful not to harm its efficacy as a threat deterrent. Google's been studying these things and consistently found that our warnings prevent substantially more MitM attacks than theirs, for instance.

c.f. http://static.googleusercontent.com/media/research.google.com/en//pubs/archive/42546.pdf and http://adrienneporterfelt.com/chi-ssl-experiment.pdf
The blocked site page could also be aligned with project Chameleon.
QA Whiteboard: [qa-]
Flags: qe-verify-

    
    

    
  
I want to suggest to use the redesign to also improve on the information provided in the technical details section of the error pages.

One of the most recurring inquiries on the SUMO forums are users with security software or malware intercepting secure traffic, resulting in a failure to load any secure pages once the root CA flies out of the browser's trust store (for example after a FF reset). Currently the 'sec_error_unknown_issuer' error won't offer any information that could lead a normally skilled user to a solution - users need to be instructed to manually attempt to add an exception (which isn't always possible), view the certificate and inspect the issuer section, which will hold clues as to what is causing the problem.

Therefore I want to advocate to show the unknown issuer of a certificate within the technical details of the sec_error_unknown_issuer error page (and possible other error codes to similar effect) - maybe by rewording like "The certificate is not trusted because its issuer XXX is not in the browser's trust store" or just adding it as another piece of information into the technical details. 
This would have the benefit that affected users will become sceptical when they see that all their sites are signed by DO_NOT_TRUST_ FiddlerRoot and don't create exceptions blindly, also they will be lead to the appropriate information for their particular situation when researching the error message and users might figure out what is going on on their own when they see that their AV vendor is always involved - all of this will reduce cost of support significantly.

    
    

    
  
Looks like Adrienne Porter Felt came up with something really cool for Chrome: https://twitter.com/__apf__/status/514624880978198528 (basically, if you click on the error code, you see detailed information about the certificate rather than having to click (in our case) "I Understand the Risks", then "Add Exception", then "View" (and that's only for overridable errors - non-overridable errors don't provide any way to see this information).

    
    

    
  
i would also advocate for a details section for non-overridable errors. 
here is a recent example of how much hassle it is for our users to figure this out: https://support.mozilla.org/en-US/questions/1022132

    
    

    
  
two more illustrative live examples of why we'd need certificate error messages that contain more useful information for users upfront - at the moment we are leaving them in a helpless state and/or give the impression it's a firefox issue:
https://support.mozilla.org/questions/1045536
https://support.mozilla.org/questions/1089049

and there are hundreds of such questions on sumo...
Status: NEW → RESOLVED
Closed: 4 years ago
Resolution: --- → WORKSFORME

          You need to log in
          before you can comment on or make changes to this bug.
        






  

    
  







  

    

      
Attachment

      

      
      
      
      
    

    

      

        

          

            
General

            

              Creator: 



            

            
Created: 

            
Updated: 

            
Size: