[Bug 25607] Need to advise authors about security considerations from bugzilla@jessica.w3.org on 2014-06-17 (public-webcrypto@w3.org from June 2014)

From: <bugzilla@jessica.w3.org>
Date: Tue, 17 Jun 2014 16:46:26 +0000
To: public-webcrypto@w3.org
Message-ID: <bug-25607-7213-5e6mqRNHtD@http.www.w3.org/Bugs/Public/>

https://www.w3.org/Bugs/Public/show_bug.cgi?id=25607

Rich Salz <rsalz@akamai.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|RESOLVED                    |REOPENED
         Resolution|FIXED                       |---

--- Comment #11 from Rich Salz <rsalz@akamai.com> ---
I read the commit diff and nothing in it addresses any of the issues raised
here:
     The misleading term "recommended" is still used.
     There is no section on security references
     Specific guidance about avoiding known-bad mechanisms is not present

If you insist on putting it into RESOLVED state, the honest thing to do is make
it WONTFIX.

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Received on Tuesday, 17 June 2014 16:46:30 UTC