A Typical Security Message

Previous page
Table of content
Next page

A Typical Security Message

Figure 24-1 shows a typical example of a bad security confirmation message.

figure 24-1 an example of a common, but bad, error message.

Figure 24-1. An example of a common, but bad, error message.

This message is a notification and has something resembling an explanation. The user can proceed to view the page by clicking Yes or can avoid some vague security risk by clicking No. Allow me to show you in Figure 24-2 what the user just saw when she read this error message.

figure 24-2 what the user just read.

Figure 24-2. What the user just read.

So why is the first message bad? The message asks a question that the user cannot possibly answer intelligently. The user has requested that Microsoft Internet Explorer display a page, and this message implicitly advises against loading the page through the wording of the text and by highlighting No as the default choice. The specific security risk that the page poses is not sufficiently explained, so the downside of continuing is unclear. In short, this message is bad because it doesn't give the user enough information to make a good decision. Consequently, the message fails to be useful.


Previous page
Table of content
Next page
Writing Secure Code
Writing Secure Code, Second Edition
ISBN: 0735617228
EAN: 2147483647
Year: 2001
Pages: 286
Authors: Michael Howard, David LeBlanc
BUY ON AMAZON
Agile Project Management: Creating Innovative Products (2nd Edition)
WebLogic: The Definitive Guide
Developing Tablet PC Applications (Charles River Media Programming)
Telecommunications Essentials, Second Edition: The Complete Global Source (2nd Edition)
Programming .Net Windows Applications
User Interfaces in C#: Windows Forms and Custom Controls
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy