Ask HN: What feature would you want the web to “force” next, after HTTPS?

114 points

9 years ago

We've seen the push for HTTPS in recent years accelerate and become more and more aggressive (in a good way).

Browsers have arguably led this drive by notifying users that the pages they are viewing are "NOT SECURE", through the use of pad-lock icons in the URL bar or even notifications under textboxes (e.g. Firefox) [0]. Chrome, too, is driving this trend. And with users fearful of sending data over a "non secure connection", they'll be vocal enough to push website owners to fix this issue.

---

So, if you could decide: what feature or measure would you want to see adopted as quickly as the push to make all sites use HTTPS?

[EDIT: kudos if you describe how your new standard could be "forced", e.g. through a URL-bar icon, notifying users somehow, etc. How would you convince other developers and maintainers of large code-bases, websites, browser vendors, etc. that they should throw their support behind your initiative?]

Think ambitiously too -- imagine your proposed feature would have the same backing and urgency as we have with HTTPS, with browsers (for better or for worse) authoritatively "dictating" the new way of doing things.

---

[0] http://cdn.ghacks.net/wp-content/uploads/2017/03/firefox-52.0-warning-insecure-login.png

[1] https://www.troyhunt.com/life-is-about-to-get-harder-for-websites-without-https/

269 comments