public-webappsec@w3.org from March 2016 by subject

[CSP] "sri" source expression to enforce SRI

• Patrick Toomey (Thursday, 17 March)
• Mike West (Thursday, 17 March)
• Scott Helme (Thursday, 17 March)
• Mike West (Thursday, 17 March)
• Scott Helme (Wednesday, 16 March)
• Richard Barnes (Wednesday, 16 March)
• Neil Matatall (Wednesday, 16 March)
• Neil Matatall (Wednesday, 16 March)

[CSP] Geotargetting?

• Jacob Bednarz (Wednesday, 2 March)

[CSP][SRI] block-non-sri-resources: * or no *?

• Francois Marier (Thursday, 31 March)
• Neil Matatall (Thursday, 31 March)

[referrer] Providing safer policy states

• Francois Marier (Wednesday, 30 March)

[webappsec] Invitation to edit: May F2F agenda

• Brad Hill (Thursday, 10 March)

[webappsec] Teleconference Agenda: 23-Mar-2016, 16:00 UTC

• Brad Hill (Tuesday, 22 March)

[webappsec] Teleconference for March 9 CANCELLED

• Brad Hill (Wednesday, 9 March)

[webappsec] TPAC 2016 reminder: 19-23 September, Lisbon Portugal

• Brad Hill (Wednesday, 9 March)

Alternative proposal for the form signing using client-certificate

• Anders Rundgren (Saturday, 12 March)
• Mitar (Saturday, 12 March)
• Anders Rundgren (Saturday, 12 March)
• Mitar (Saturday, 12 March)
• Anders Rundgren (Friday, 11 March)
• Dave Longley (Thursday, 10 March)
• Mitar (Thursday, 10 March)
• Mitar (Thursday, 10 March)
• Anders Rundgren (Wednesday, 9 March)
• Crispin Cowan (Tuesday, 8 March)
• timeless (Tuesday, 8 March)
• Mitar (Monday, 7 March)
• Crispin Cowan (Monday, 7 March)
• Mitar (Sunday, 6 March)

anyone have today's irc in their scrollback buffer?

• Evan J Johnson (Thursday, 24 March)
• Wendy Seltzer (Thursday, 24 March)
• Natasha Rooney (Thursday, 24 March)
• Brad Hill (Thursday, 24 March)

block-all-mixed-content directive on an HTTP page

• Mike West (Tuesday, 22 March)
• Nottingham, Mark (Tuesday, 22 March)
• Tanvi Vyas (Monday, 21 March)

Call for Exclusions (Update): Content Security Policy: Cookie Controls; Content Security Policy: Embedded Enforcement

• Xueyuan Jia (Tuesday, 15 March)

CORS performance proposal

• Anne van Kesteren (Friday, 18 March)
• Hewitt, Rory (Friday, 18 March)
• Anne van Kesteren (Friday, 18 March)
• Craig Francis (Friday, 18 March)
• Hewitt, Rory (Thursday, 17 March)

F2F dates? (Re: [webappsec] Teleconference for March 9 CANCELLED)

• Daniel Veditz (Wednesday, 9 March)
• Mike West (Wednesday, 9 March)

Fixing third party content

• Craig Francis (Tuesday, 22 March)
• Brad Hill (Tuesday, 22 March)
• Craig Francis (Tuesday, 22 March)
• Craig Francis (Tuesday, 22 March)
• Brad Hill (Tuesday, 22 March)
• Yoav Weiss (Tuesday, 22 March)
• Craig Francis (Friday, 11 March)
• Craig Francis (Friday, 11 March)

iFrame access

• Craig Francis (Tuesday, 29 March)
• Craig Francis (Tuesday, 29 March)
• Chris Palmer (Monday, 28 March)
• Craig Francis (Tuesday, 22 March)
• Craig Francis (Monday, 21 March)
• Devdatta Akhawe (Sunday, 20 March)
• Craig Francis (Sunday, 20 March)

initializing working draft specs in github.com/webauthn?

• Hodges, Jeff (Friday, 4 March)
• Hodges, Jeff (Friday, 4 March)

Making it easier to deploy CSP.

• Artur Janc (Sunday, 27 March)

Request for comments: Permission Delegation to Iframes

• Richard Barnes (Monday, 21 March)
• Craig Francis (Sunday, 20 March)
• Raymes Khoury (Friday, 18 March)
• Tanvi Vyas (Friday, 18 March)
• Richard Barnes (Friday, 18 March)
• Richard Barnes (Friday, 18 March)
• Jesse Ruderman (Friday, 18 March)
• Tanvi Vyas (Friday, 18 March)
• Raymes Khoury (Thursday, 17 March)
• Chris Palmer (Wednesday, 16 March)
• Richard Barnes (Wednesday, 16 March)
• Chris Palmer (Wednesday, 16 March)
• Richard Barnes (Wednesday, 16 March)
• Raymes Khoury (Wednesday, 16 March)

Sign up for May F2F if you're coming

• Daniel Veditz (Tuesday, 22 March)

Some questions regarding the status of UIS and CSP

• Christoph Kerschbaumer (Friday, 11 March)
• Jose Kahan (Friday, 11 March)

Testing of browser permissions prompts

• Mathieu Hofman (Friday, 11 March)

Using client certificates for signing

• Mitar (Wednesday, 2 March)
• Crispin Cowan (Wednesday, 2 March)
• Jeffrey Walton (Wednesday, 2 March)
• Mitar (Wednesday, 2 March)
• Crispin Cowan (Tuesday, 1 March)
• Mitar (Tuesday, 1 March)

WebAppSec @ TPAC; Days?

• Brad Hill (Tuesday, 29 March)

Last message date: Thursday, 31 March 2016 23:22:41 UTC