W3C home > Mailing lists > Public > ietf-http-wg@w3.org > January to March 2012

WGLC issue for p7: "strength"

From: Mark Nottingham <mnot@mnot.net>
Date: Fri, 16 Mar 2012 19:53:18 +1100
Message-Id: <F39717E1-97A6-458A-9B72-382555C25092@mnot.net>
To: HTTP Working Group <ietf-http-wg@w3.org>

2.1 Challenge and Response - "The user agent MUST choose to use one of the challenges with the strongest auth-scheme it understands..." What does "strongest" mean here? Should we have an index of auth scheme strength as a registry field? This may seem like nit-picking, but we place a MUST against it.

--
Mark Nottingham   http://www.mnot.net/
Received on Friday, 16 March 2012 08:53:48 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 27 April 2012 06:51:57 GMT