Msg#: 4668829 posted 11:11 am on May 6, 2014 (gmt 0)
This is something i'm not keen on, especially where it's an unknown site.
Jake Archibald, a "developer advocate" for Chrome at Google, has blogged about how the "Canary" version of Chrome is now hiding parts of the URL in order to make phishing attacks more obvious to the user. Canary is an experimental version, used to test new features like this. The feature may or may not make it into release versions of Chrome.Google Chrome Experiment To Hide URLs [zdnet.com]
Msg#: 4668829 posted 3:37 pm on May 8, 2014 (gmt 0)
When I read the summary above, my first thought was "that makes no sense! How can hiding parts of the URL make phishing attacks MORE obvious?" After reading the article and seeing the examples, though, it does make some sense to me, but I still feel like there might be a better approach.
For example, just breaking up the protocol, host, and path into visually distinct blocks within the URL bar, with an emphasis on the host. That way, all of the information is still visible. Here's a very rough example of what I'd think that would look like: [jsfiddle.net...]
(Note, this was just a quick POC, not what I would actaully expect it to look like)