well, thank you for explaining the pros and cons of showing warnings / errors.

and i look forward to ubiquitous new standards and processes that will help the end user to trust genuine sites/documents without much efforts.

Truely speaking, the problem is not so grave for SSL and websites, but is a little complex for signed documents. That is because, likewise, there is this issue of what should an application do if it finds MD5 (or for that matter MD2 or MD4) in a digital signature or certificate — should it only give a warning or fail the signature verification altogether? If it gave only a warning, one might have the same question — what should an end user do with a warning. On the other hand if it treats it as error, potentially a lot of genuine signed documents might lose their authenticity. I believe that just because an algorithm has been broken (or some key lengths have become weak), it would be too much of a penalty to pay if it rendered all information that uses such algorithms or keys useless. Again, here external factors should come into picture based on which the receiver of the information could decide whether to trust the information or not.

To precisely address such needs, some standardization bodies are working on defining standards for long term archiving. Some signed documents need to be stored for a long time like 10, 20 or 30 years and one needs to ensure their authenticity at that time. What happens to signed documents over a period of time when the algorithms get broken or keys become weak. Essentially the standards talk about using trusted third party timestamps to clearly mark the time when the signature was done, and then re-signing periodically such documents with latest algorithms and key lengths which are not broken. However, such standards are far from being in deployment and until such times as these standards become ubiquitus, users will have to depend on some external factors to take a call about the trustworthiness of information.

In the last point u mentioned that applications should flag a warning if they find “unknown extension”… but even if such a warning is given to user, how will it help? end user like me, will be in no position to make any sense out of the contents of the extension.

You would have seen lot of sites that show the screen shots of the warning dialogs (typically on download sites or if some activeX needs to be installed) and “guide” the user to continue the operation / process. What if a fraud site “guides” the user in same way to get rid of the warning dialog, how are we going to handle it??