Creating Better Malware Warnings Through Psychology 85
msm1267 writes "Generic malware warnings that alert computer users to potential trouble are largely ineffective and often ignored. Researchers at Cambridge University, however, have proposed a change to the status quo, believing instead that warnings should be re-architected to include concrete, specific warnings that are not technical and rely less on fear than current alerts."
Re:Hmmm ... (Score:4, Interesting)
The NSA would use a major signing authority so as to avoid any warnings. And it would say it was signed by whoever they wanted it to say it was signed by because... NSA.
You are actually better off using your own PKI all the way up and adding your own root certs etc to your browsers if you are concerned about the NSA.
This isn't actually bad advice in general.
Re:Waste of Time (Score:4, Interesting)
Right, but the point of the article is to do so on sites that ARE bad and WILL drive-by software that will try to log your keystrokes, steal your passwords and account numbers, and use your computer to send out spam (concrete threats), and not "this could be something scary and microsoft doesn't approve" because you have a GUI IP scanner installed.