W3C home > Mailing lists > Public > public-html@w3.org > March 2012

Re: Revert Request for "http+aes" scheme (see also ISSUE-179)

From: Mark Watson <watsonm@netflix.com>
Date: Wed, 7 Mar 2012 17:34:16 +0000
To: Julian Reschke <julian.reschke@gmx.de>
CC: HTML WG <public-html@w3.org>, Sam Ruby <rubys@intertwingly.net>, "Paul Cotton" <Paul.Cotton@microsoft.com>, Maciej Stachowiak <mjs@apple.com>
Message-ID: <A10EAD49-CEA8-4E65-A029-88BD686DAC7D@netflix.com>
Additional rationale for reverting this change:
- there is an alternative proposal before the group [1] which has been the subject of considerable debate, not yet concluded
- the http+aes propose is immature, has had little review by this group and no review by security experts outside this group

I suggest the proposal be considered by the new media encryption Task Force along with [1].

...Mark

[1] http://dvcs.w3.org/hg/html-media/raw-file/tip/encrypted-media/encrypted-media.html
On Mar 7, 2012, at 2:50 AM, Julian Reschke wrote:

> Hi there,
> 
> I believe that the addition of the "http+aes" URI scheme (<http://dev.w3.org/cvsweb/html5/spec/Overview.html.diff?r1=1.5601;r2=1.5602> plus subsequent edits) is controversial in that:
> 
> - there's a related issue (ISSUE-179) which hasn't been decided yet,
> 
> and
> 
> - addition of a new URI scheme seems to be a major change that shouldn't happen after Last Call without broad consensus.
> 
> See also related thread starting with <http://lists.w3.org/Archives/Public/ietf-http-wg/2012JanMar/0795.html>.
> 
> Best regards, Julian
> 
> 
Received on Wednesday, 7 March 2012 17:35:16 UTC

This archive was generated by hypermail 2.3.1 : Monday, 29 September 2014 09:39:30 UTC