public-webappsec@w3.org from February 2016 by thread

Teleconference Agenda 2016-Feb-24 Daniel Veditz (Wednesday, 24 February)

Using client certificates for signing Mitar (Monday, 22 February)

new meta tags to protect code visibility or immuatbility Ahmed Saleh (Tuesday, 16 February)

Embedded Enforcement and Cookie Controls Mike O'Neill (Monday, 15 February)

[UI Security] iframe URL indicator Bil Corry (Saturday, 13 February)

Making it easier to deploy CSP. Mike West (Friday, 12 February)

FYI: RFC7762 established a registry of CSP directives Mike West (Friday, 12 February)

Towards a minimum-viable credential management API. Mike West (Friday, 12 February)

[webappsec] Teleconference Agenda 2016-Feb-10 Daniel Veditz (Wednesday, 10 February)

Re: [CSP] "sri" source expression to enforce SRI Patrick Toomey (Tuesday, 9 February)

In-browser sanitization first, "Safe Node" later? Frederik Braun (Monday, 8 February)

Re: Proposal to add a browsing context named "_private" Tanvi Vyas (Saturday, 6 February)

Re: Proposal: Marking HTTP As Non-Secure 0h3rr3r4@gmail.com (Thursday, 4 February)

[suborigins] Accessing workers from suborigins Mitar (Wednesday, 3 February)

[suborigins] Issues on GitHub Mitar (Wednesday, 3 February)

CSP header protection Kepeng Li (Wednesday, 3 February)

[referrer] Should referrer policy change value of the Origin header? Brad Hill (Tuesday, 2 February)

Re: [webappsec] Face to Face meeting survey Brad Hill (Tuesday, 2 February)

RE: HSTS priming vs preloading Ben Wilson (Monday, 1 February)

Review of WebRTC 1.0 from Web Application Security Working Group Stefan Håkansson LK (Monday, 1 February)

Last message date: Monday, 29 February 2016 22:45:26 UTC