What else beyond June? What, if anything, other than taking wsc-xit through LC to CR entry to CR exit (to recommendation) would we like to do after June? What would we be capable of doing? What should we, or someone like us, do? Some ideas:
- Authoring best practices for (usably) secured sites. Some of the things we've wanted to recommend haven't been obviously in the scope of enabling security context information for user trust decisions. Should we ask for a charter clarification/change or new WG to do this?
- Dealing with mixed content (there's some feeling that there might be more to do here).
- Providing guidance or expertise to other standards efforts that touch on usable security. Can we provide guidance on how to deal with user expectations and implications when protocol security is designed/standardized? To do? Not to do?
- recommendations for other visual interfaces (e.g. gadgets) on display of the origins of the information being conveyed