[Bug 25607] Need to advise authors about security considerations from bugzilla@jessica.w3.org on 2014-07-28 (public-webcrypto@w3.org from July 2014)

From: <bugzilla@jessica.w3.org>
Date: Mon, 28 Jul 2014 20:18:41 +0000
To: public-webcrypto@w3.org
Message-ID: <bug-25607-7213-Vl8ETBpj1n@http.www.w3.org/Bugs/Public/>

https://www.w3.org/Bugs/Public/show_bug.cgi?id=25607

--- Comment #35 from Rich Salz <rsalz@akamai.com> ---
Gladly:
   This document describes an API but does not discuss security issues about
using any particular algorithm. Authors and implementors SHOULD read the CFRG
RFC on "FOO," the most current version, for such advice.

Not sure if "authors and implementors" is the right phrase -- whatever's in the
document.  And SHOULD is IETF all-caps on purpose.

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Received on Monday, 28 July 2014 20:18:43 UTC