Paper: Why phishing works

An interesting paper, which decomposes the effectiveness of phishing through the analysis of its tricks arsenal. Infocard, the high assurance certificates and the completeness of the info given to the user by the Identity Selector address directly some of the concerns, while others are dispelled by the nature of the system itself (see older posts on the subject)