在信用卡输入屏幕上显示“这是安全的”

时间:2021-11-24 18:14:15

Should I show some sort of "this site is secure" puffery (e.g. lock image, or some brief "this site is secure" boilerplate) on my credit card payment screen? If so, what should it look like? If not, why not?

我是否应该在信用卡付款屏幕上显示某种“此网站是安全的”puffery(例如锁定图像,或者某些简短的“此网站是安全的”样板)?如果是这样,它应该是什么样子?如果没有,为什么不呢?

I do want my customers to feel confident (as well as actually be safe) if they choose to enter their credit card details to pay my clients. I also want them to learn a healthy cynicism. Most of my customers are likely to have a very low level of technical knowledge about internet security and are usually either too trusting, and (in some cases) too suspicious of the wrong things.

如果他们选择输入他们的信用卡详细信息来支付我的客户,我确实希望我的客户有信心(以及实际上是安全的)。我也希望他们学习一种健康的玩世不恭。我的大多数客户可能对互联网安全的技术知识水平很低,而且通常要么过于信任,要么(在某些情况下)过于怀疑错误的事情。

I even had a customer call me up saying he wasn't sure if my payment page was secure because it didn't have any "padlock" image within the page. (yes, the page had a valid ssl certificate, the customer had the correct URL, and his version of Chrome was showing it with the green padlock with the "Secure" label at the time - after pointing this out he was happy to proceed).

我甚至让一位客户打电话给我说他不确定我的付款页面是否安全,因为它在页面中没有任何“挂锁”图像。 (是的,该页面有一个有效的ssl证书,客户有正确的URL,他的Chrome版本显示时带有绿色挂锁,当时有“安全”标签 - 指出后他很乐意继续) 。

I just feel it's a bit strange to splash a "this is secure" badge on a page because I know it means nothing, technically - because a phishing page would just as easily show the exact same badge.

我觉得在页面上放置“这是安全的”徽章有点奇怪,因为我知道它在技术上没有任何意义 - 因为网络钓鱼页面可以很容易地显示完全相同的徽章。

Assumption: that my site is actually secure (let's just say I've tried my best and will continue to improve as much as possible).

假设:我的网站实际上是安全的(让我们说我已尽力而为,并将尽可能地继续改进)。

For reference, here is the page as it currently stands: 在信用卡输入屏幕上显示“这是安全的”

供参考,这是目前的页面:

Here's a mockup of what I mean: 在信用卡输入屏幕上显示“这是安全的”

这是我的意思的模型:

1 个解决方案

#1


3  

Funny thing, I just did the research on this recently, because we faced the same "issue" in our e-commerce shop.

有趣的是,我最近刚刚对此进行了研究,因为我们在电子商务商店遇到了同样的“问题”。

There is a good Baymard article referencing exactly this:

有一篇很好的Baymard文章正好引用了这个:

Visually Reinforce the Credit Card Section

视觉上加强信用卡部分

One method we consistently observe to perform well for increasing users’ perceived security of sensitive fields is to visually encapsulate them. This can be achieved simply by using borders, background colors, shading, and other visual styling that will make one part of the form seem more robust than the rest. Remember: this is about perceived security of the fields, not their actual technical security.

我们一直观察到的一种方法是提高用户对敏感字段的感知安全性,这种方法是在视觉上封装它们。这可以通过使用边框,背景颜色,阴影和其他视觉样式来实现,这将使表单的一部分看起来比其余部分更健壮。请记住:这是关于字段的感知安全性,而不是它们的实际技术安全性。

So what we ended up doing, as nonsensical as it sounds, is actually add the word "secure" to the payment headline and a little lock icon near the credit card input field.

所以我们最终做的事情,听起来毫无意义,实际上是在支付标题上加上“安全”一词,在信用卡输入字段附近添加一个小锁图标。


Note: This could be perceived as manipulative (referencing your healthy cynicism point), but I would argue it is simply to calm the user, since the page itself is already technically robust.

注意:这可能被认为是操纵性的(引用你的健康玩世不恭点),但我认为这只是为了让用户平静,因为页面本身在技术上已经很强大了。

You could also purchase a trust seal for your site, to give your users something to hold on to when judging the seriousness of your shop. The Baymard article references these too.

您还可以为您的网站购买信托印章,以便在判断您的商店的严肃性时为您的用户提供一些信息。 Baymard的文章也引用了这些。

Since our shop is already quite known here and trusted we didn't feel the need for one in our case.

由于我们的商店在这里已经非常有名并且值得信赖,因此我们认为不需要我们的商店。

#1


3  

Funny thing, I just did the research on this recently, because we faced the same "issue" in our e-commerce shop.

有趣的是,我最近刚刚对此进行了研究,因为我们在电子商务商店遇到了同样的“问题”。

There is a good Baymard article referencing exactly this:

有一篇很好的Baymard文章正好引用了这个:

Visually Reinforce the Credit Card Section

视觉上加强信用卡部分

One method we consistently observe to perform well for increasing users’ perceived security of sensitive fields is to visually encapsulate them. This can be achieved simply by using borders, background colors, shading, and other visual styling that will make one part of the form seem more robust than the rest. Remember: this is about perceived security of the fields, not their actual technical security.

我们一直观察到的一种方法是提高用户对敏感字段的感知安全性,这种方法是在视觉上封装它们。这可以通过使用边框,背景颜色,阴影和其他视觉样式来实现,这将使表单的一部分看起来比其余部分更健壮。请记住:这是关于字段的感知安全性,而不是它们的实际技术安全性。

So what we ended up doing, as nonsensical as it sounds, is actually add the word "secure" to the payment headline and a little lock icon near the credit card input field.

所以我们最终做的事情,听起来毫无意义,实际上是在支付标题上加上“安全”一词,在信用卡输入字段附近添加一个小锁图标。


Note: This could be perceived as manipulative (referencing your healthy cynicism point), but I would argue it is simply to calm the user, since the page itself is already technically robust.

注意:这可能被认为是操纵性的(引用你的健康玩世不恭点),但我认为这只是为了让用户平静,因为页面本身在技术上已经很强大了。

You could also purchase a trust seal for your site, to give your users something to hold on to when judging the seriousness of your shop. The Baymard article references these too.

您还可以为您的网站购买信托印章,以便在判断您的商店的严肃性时为您的用户提供一些信息。 Baymard的文章也引用了这些。

Since our shop is already quite known here and trusted we didn't feel the need for one in our case.

由于我们的商店在这里已经非常有名并且值得信赖,因此我们认为不需要我们的商店。