Here's a question.. if you can read data coming 'from' the server, what would prevent you to read data going 'to' the server (like user-ID and pw)? Clearly any firewall program needs to allow incoming and outgoing data from you custom browser, how do I know some of that data isn't relayed back to you?

Don't get me wrong, I appreciate your effort, it's just that I can't imagine anybody in their right minds installing something like this unless it came directly from STS themselves.