W3C home > Mailing lists > Public > public-bpwg@w3.org > February 2009

Re: [ACTION-899] Web Security Context feedback on security Best Practice for MWABP

From: Jeff Sonstein <jeffs@it.rit.edu>
Date: Wed, 4 Feb 2009 12:03:15 -0500
To: public-bpwg@w3.org
Message-Id: <338D9035-F8F9-4DCD-91CA-688D064E05E8@it.rit.edu>
Cc: François Daoust <fd@w3.org>

On Feb 4, 2009, at 4:45 AM, public-bpwg@w3.org wrote:

> I had contacted Thomas and the Web Security Context Working Group to  
> get
> feedback on section 3.2.1 [1]

good move

> In short, they strongly advise us *not to* write a best practice that
> would recommend to use a Hashed Identity Token in lieu of a proper  
> HTTPS
> connection.

makes sense

jeffs

--
Lyndon Johnson said the two things that make politicians
behave more stupidly than anything else are sex and envy.
You might add one more: proximity. I always think men are
more prone to get seduced by proximity into making unwise
choices. They tend to be a bit lazy. They'll grab the closest
doughnut off the platter.
- Maureen Dowd -
============

Prof. Jeff Sonstein

http://www.it.rit.edu/~jxs/
http://ariadne.iz.net/~jeffs/
http://chw.rit.edu/blog/
http://ariadne.iz.net/~jeffs/jeffs.asc
http://www.it.rit.edu/~jxs/emailDisclaimer.html
Received on Wednesday, 4 February 2009 17:03:57 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 20:43:00 UTC