On Wed, Mar 18, 2015 at 1:03 PM, Anne van Kesteren <annevk@annevk.nl> wrote: > On Wed, Mar 18, 2015 at 8:10 PM, Eric Rescorla <ekr@rtfm.com> wrote: > > On Wed, Mar 18, 2015 at 11:26 AM, Stefan HÃ¥kansson LK > > <stefan.lk.hakansson@ericsson.com> wrote: > > Well, ultimately this is a levy on the TF from the IETF. I'm happy to > > discuss > > this in the IETF context, but if IETF decides not to change it (and for > the > > record, my view is we should not) then we're going to be right back here. > > > >> FWIW, to me the question seem straightforward enough to handle in an > >> off-line discussion. > > > > That may be, but IMO this present discussion is nowhere near enough to > > override the IETF WG consensus on a document that has been through > > WGLC. > > What kind of end-user testing did the IETF perform that makes it feel > like it can impose such requirements? Historically the IETF has been > quite poor at this, e.g. certain HTTP UI requirements come to mind. The reason that the IETF feels like it can impose such requirements is that the agreed upon work split was that security would mostly be handled in IETF rather than trying to divide it between the IETF and W3C. To the best of my knowledge, there wasn't a strong feeling that end-user testing should be performed prior to making this requirement (and as I said, this requirement has been in the document for over three years, so there's been plenty of opportunity for people to ask for that). However, you should of course feel free to express this view during the IETF discussion. -Ekr
Received on Wednesday, 18 March 2015 20:14:42 UTC