W3C home > Mailing lists > Public > whatwg@whatwg.org > October 2012

Re: [whatwg] checksum attribute in a href tag

From: A. Rauschenbach <rauschenbach@annuo.de>
Date: Fri, 19 Oct 2012 20:46:24 +0200
To: Ian Hickson <ian@hixie.ch>
Message-ID: <6a4ed092306a9f12fcd27724e3147623@perseus.uberspace.de>
Cc: Whatwg <whatwg@whatwg.org>
Am 2012-10-19 18:49, schrieb Ian Hickson:
> What is the attack scenario you are trying to avoid?
>
> Without a discussion of what problem you're trying to solve, it's 
> unclear
> how to evaluate the proposal.
>
> The idea of a hash="" or checksum="" attribute on <a href> has come 
> up
> before -- about once a year, as far as I can tell! -- but it's always 
> been
> found lacking in one way or another.
>
I don't want to avoid any attack scenario!

I want trusted information.

If I write an article and link to other documents I want a solution 
that the visitor can be sure that the document he opens is the document 
I originally linked to. (And if its not he gets informed. So he knows 
that the information maybe differ from the one the article talks about.)


The second point is that verification if a file was downloaded 
correctly is a computer task not a human task. A standard how to give 
the verification information enables the browser/plugin vendors to do 
this task.
Received on Friday, 19 October 2012 18:46:56 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Wednesday, 30 January 2013 18:48:11 GMT