public-webappsec@w3.org from January 2016: by subject

[CSP] "sri" source expression to enforce SRI

Eduardo Robles Elvira (Saturday, 9 January)
Joel Weinberger (Wednesday, 6 January)
Mike O'Neill (Tuesday, 5 January)
Jonathan Kingston (Tuesday, 5 January)
Mike O'Neill (Tuesday, 5 January)
Nottingham, Mark (Tuesday, 5 January)
Patrick Toomey (Monday, 4 January)

[powerful features] Secure Contexts and Framed Documents

Chris Palmer (Wednesday, 13 January)
Rich Tibbett (Wednesday, 13 January)
Anne van Kesteren (Wednesday, 13 January)
Anne van Kesteren (Wednesday, 13 January)
Rich Tibbett (Wednesday, 13 January)
Joel Weinberger (Wednesday, 13 January)
Anne van Kesteren (Wednesday, 13 January)
Rich Tibbett (Wednesday, 13 January)

[SRI] Increasing Cacheable Content as a goal

Slim Amamou (Wednesday, 20 January)
Brad Hill (Wednesday, 20 January)
Slim Amamou (Wednesday, 20 January)

[SRI] Re: Security / Technical feedback on subresource integrity specification

Frederik Braun (Tuesday, 19 January)

[sritest.io] New Website SRI Scanner Service

Gabor Szathmari (Wednesday, 13 January)

[webappsec] Face to Face meeting survey

Brad Hill (Wednesday, 27 January)
Brad Hill (Wednesday, 27 January)

[webappsec] Teleconference Agenda 13-Jan-2016

Brad Hill (Tuesday, 12 January)

[webappsec] Teleconference Agenda: 27-Jan-2016

Brad Hill (Monday, 25 January)

Allow auto-resize on iframe

Craig Francis (Sunday, 31 January)
Craig Francis (Sunday, 31 January)

Call for Consensus: Mixed Content to Proposed Recommendation

Wendy Seltzer (Tuesday, 5 January)
Brad Hill (Tuesday, 5 January)

Call for Consensus: SRI to Proposed Recommendation

Brad Hill (Tuesday, 5 January)

Call for Exclusions (Update): Confinement with Origin Web Labels

Xueyuan Jia (Thursday, 14 January)

Call for Exclusions: Content Security Policy Level 3

Xueyuan Jia (Tuesday, 26 January)

CfC: CSP3 to FPWD; deadline January 15th.

Mike West (Friday, 8 January)

Fwd: HTTPS/HSTS support on www.w3.org servers

Wendy Seltzer (Monday, 11 January)

Header size and policy delivery

Martin Thomson (Thursday, 7 January)
Patrick Toomey (Thursday, 7 January)
Mike O'Neill (Thursday, 7 January)
Martin Thomson (Thursday, 7 January)
Patrick Toomey (Thursday, 7 January)
Martin Thomson (Thursday, 7 January)
Jonathan Kingston (Thursday, 7 January)

HSTS priming vs preloading

Jim Manico (Tuesday, 19 January)
Richard Barnes (Tuesday, 19 January)
Jim Manico (Tuesday, 19 January)
Eric Mill (Monday, 18 January)
Mike West (Monday, 18 January)
Eric Mill (Monday, 18 January)
Richard Barnes (Monday, 18 January)
Mike West (Monday, 18 January)

In-browser sanitization vs. a “Safe Node” in the DOM

David Ross (Tuesday, 26 January)
David Ross (Tuesday, 26 January)
Andrew Sutherland (Monday, 25 January)
David Ross (Monday, 25 January)
David Ross (Monday, 25 January)
Andrew Sutherland (Saturday, 23 January)
Jim Manico (Saturday, 23 January)
Jim Manico (Saturday, 23 January)
David Ross (Saturday, 23 January)
David Ross (Saturday, 23 January)
Jim Manico (Saturday, 23 January)
David Ross (Saturday, 23 January)
David Ross (Saturday, 23 January)
Jim Manico (Saturday, 23 January)
David Ross (Saturday, 23 January)
David Ross (Saturday, 23 January)
David Ross (Friday, 22 January)
Jim Manico (Friday, 22 January)
Jim Manico (Friday, 22 January)
David Ross (Friday, 22 January)
David Ross (Friday, 22 January)
Jim Manico (Friday, 22 January)
David Ross (Friday, 22 January)
Chris Palmer (Friday, 22 January)
David Ross (Friday, 22 January)
Michal Zalewski (Friday, 22 January)
Jim Manico (Friday, 22 January)
Chris Palmer (Friday, 22 January)
Crispin Cowan (Friday, 22 January)
David Ross (Friday, 22 January)
David Ross (Friday, 22 January)
Chris Palmer (Friday, 22 January)
David Ross (Friday, 22 January)
Crispin Cowan (Friday, 22 January)
David Ross (Friday, 22 January)
Chris Palmer (Friday, 22 January)
David Ross (Friday, 22 January)
Craig Francis (Friday, 22 January)
Michaela Merz (Thursday, 21 January)
Anne van Kesteren (Friday, 22 January)
David Ross (Thursday, 21 January)
Conrad Irwin (Thursday, 21 January)
David Ross (Thursday, 21 January)

Limiting requests from the internet to the intranet.

Richard Barnes (Wednesday, 13 January)
Brian Smith (Saturday, 9 January)
Devdatta Akhawe (Saturday, 9 January)
Justin Schuh (Friday, 8 January)
Erik Nygren (Friday, 8 January)
Brian Smith (Friday, 8 January)
Richard Barnes (Friday, 8 January)
Mike West (Friday, 8 January)
Justin Schuh (Wednesday, 6 January)
Chris Palmer (Wednesday, 6 January)
Oda, Terri (Wednesday, 6 January)
Justin Schuh (Monday, 4 January)
Justin Schuh (Monday, 4 January)
Sergey Shekyan (Monday, 4 January)
Erik Nygren (Monday, 4 January)
Nottingham, Mark (Monday, 4 January)
Chris Palmer (Monday, 4 January)
Mike West (Monday, 4 January)
Chris Palmer (Monday, 4 January)
Mike West (Monday, 4 January)
Chris Palmer (Monday, 4 January)
Mike West (Monday, 4 January)
Richard Barnes (Monday, 4 January)
Erik Nygren (Monday, 4 January)
Eric Mill (Monday, 4 January)
Mike West (Monday, 4 January)

new CSP draft.

Mike West (Tuesday, 12 January)
Jonathan Kingston (Tuesday, 12 January)
Oda, Terri (Monday, 11 January)
Mike West (Monday, 11 January)
Jonathan Kingston (Sunday, 10 January)

PDF alternative using HTML (proposal)

James May (Monday, 18 January)
Craig Francis (Tuesday, 19 January)
Crispin Cowan (Monday, 18 January)
Craig Francis (Monday, 18 January)
Craig Francis (Monday, 18 January)
Craig Francis (Monday, 18 January)
Crispin Cowan (Sunday, 17 January)
Craig Francis (Sunday, 17 January)
Crispin Cowan (Sunday, 17 January)
Ángel González (Saturday, 16 January)
Craig Francis (Thursday, 14 January)
Wendy Seltzer (Tuesday, 12 January)
Craig Francis (Tuesday, 12 January)
Adrian Hope-Bailie (Tuesday, 12 January)
Craig Francis (Tuesday, 12 January)

Permissions work - status and intent to update

Harald Alvestrand (Wednesday, 27 January)
Harald Alvestrand (Wednesday, 27 January)

preflighted CORS requests and redirects: principally impossible?

Anne van Kesteren (Sunday, 24 January)
Utkarsh Upadhyay (Sunday, 24 January)
Jonathan Kingston (Friday, 22 January)
Utkarsh Upadhyay (Friday, 22 January)
Nico Schlömer (Friday, 22 January)
Anne van Kesteren (Friday, 22 January)
Nico Schlömer (Friday, 22 January)

Proposal to add a browsing context named "_private"

Utkarsh Upadhyay (Sunday, 24 January)
Crispin Cowan (Thursday, 14 January)
Joel Weinberger (Thursday, 14 January)
Utkarsh Upadhyay (Thursday, 14 January)
Crispin Cowan (Tuesday, 12 January)
Utkarsh Upadhyay (Tuesday, 12 January)
Anne van Kesteren (Tuesday, 12 January)
Crispin Cowan (Tuesday, 12 January)
Utkarsh Upadhyay (Tuesday, 12 January)
Joel Weinberger (Monday, 11 January)
Utkarsh Upadhyay (Monday, 11 January)
Crispin Cowan (Monday, 11 January)
Joel Weinberger (Monday, 11 January)
Patrick Toomey (Monday, 11 January)
timeless (Monday, 11 January)
Patrick Toomey (Monday, 11 January)
Richard Barnes (Monday, 11 January)
Utkarsh Upadhyay (Monday, 11 January)

Proposal: Marking HTTP As Non-Secure

Eric Mill (Sunday, 31 January)
Eitan Adler (Saturday, 30 January)
Jim Manico (Saturday, 30 January)
Chris Palmer (Friday, 29 January)
jirkadanek7@gmail.com (Thursday, 28 January)
Chris Palmer (Thursday, 28 January)

Request for input on Foreign Fetch

Anne van Kesteren (Thursday, 28 January)
Martin Thomson (Thursday, 28 January)
Anne van Kesteren (Thursday, 28 January)
Anne van Kesteren (Thursday, 28 January)
Ben Gidley (Thursday, 28 January)
Martin Thomson (Thursday, 28 January)
Anne van Kesteren (Wednesday, 27 January)
Martin Thomson (Wednesday, 27 January)
Anne van Kesteren (Wednesday, 27 January)
Mike West (Wednesday, 27 January)
Anne van Kesteren (Friday, 22 January)

Secure Contexts to CR? (Re: [webappsec] Teleconference Agenda: 27-Jan-2016)

Mike West (Tuesday, 26 January)

Security / Technical feedback on subresource integrity specification

Jonathan Kingston (Wednesday, 20 January)
Richard Barnes (Wednesday, 20 January)
Mhano Harkness (Wednesday, 20 January)
Mhano Harkness (Wednesday, 20 January)
Francois Marier (Wednesday, 20 January)
Mhano Harkness (Tuesday, 19 January)

Signed JavaScript/JSON using ES6 + Google V8

Anders Rundgren (Friday, 15 January)

Summary of major differences between COWL and Suborigins

Deian Stefan (Saturday, 23 January)
Joel Weinberger (Thursday, 14 January)

Last message date: Sunday, 31 January 2016 19:02:13 UTC