"industry standards"
[fwd] TLS protected draft (from: yngve@opera.com)
[tracker only] ACTION-275
ACTION-221 Match RobustSecurityIndicators against other proposals; ensure nothing gets lost
ACTION-252 OPEN Map out some study proposals for existing recommendations, co-ordinate with Rachna who owns u
ACTION-256 completed
ACTION-275
ACTION-277 Definition of Location Bar provided in Glossary
ACTION-278
Agenda: WSC WG distributed meeting, Wednesday, 2007-08-08
Agenda: WSC WG distributed meeting, Wednesday, 2007-08-08 - regrets
Agenda: WSC WG distributed meeting, Wednesday, 2007-08-15
Agenda: WSC WG distributed meeting, Wednesday, 2007-08-22
Agenda: WSC WG weekly 2007-08-29
Certificate status checks vs validity period; self-signed certs (Re: Current state of editor's draft / IdentitySignal)
Current state of editor's draft / IdentitySignal
Deployment practices (Re: Current state of editor's draft / IdentitySignal)
Different protections for different kinds of spoofing (Was: PII Editor Bar & Trusted Browser Component)
draft minutes from 8/01 call
favicons: updated editor's draft [ACTION-276]
first cut usability walk through
- Dan Schutzer (Sunday, 12 August)
- Audian Paxson (Friday, 10 August)
- Mary Ellen Zurko (Friday, 10 August)
- Serge Egelman (Friday, 10 August)
- Mary Ellen Zurko (Friday, 10 August)
- Close, Tyler J. (Monday, 6 August)
- Serge Egelman (Friday, 3 August)
- Thomas Roessler (Friday, 3 August)
- Serge Egelman (Wednesday, 1 August)
- Maritza Johnson (Wednesday, 1 August)
- Timothy Hahn (Wednesday, 1 August)
- Thomas Roessler (Wednesday, 1 August)
- Rachna Dhamija (Wednesday, 1 August)
FYI: trust anchor management BOF at IETF 69 (ACTION-267)
icon internationalization
Identity Signals: Nicknames and certificate attributes (Re: Current state of editor's draft / IdentitySignal)
Interest in "code sprint" at one of our f2fs?
ISSUE-100: Update acknowledgementst to list everyone who contributed [Note: use cases etc.]
ISSUE-101: Create "visiting known site that is now malware" use case as per ACTION-275 [Note: use cases etc.]
ISSUE-102: What should be our notion of "EV" certificates? [Techniques]
ISSUE-103: Should unknown CAs and self-signed certificates be treated the same way? [Techniques]
ISSUE-104: Some information in certificates is not trustworthy [Techniques]
ISSUE-105: What information should be communicated about client state? [Techniques]
ISSUE-106 (cert/URL matching): We need to define details of cert/URL matching [Techniques]
ISSUE-38: no safe haven in presentation space (from publiccomments)
ISSUE-6 / ACTION-239: Mobile/device browsing
ISSUE-73: Proposed changes to process chapter
ISSUE-76: add file extension remark to security context information list
ISSUE-77: Reference threat work in wsc-usecases
ISSUE-78: Definitions
ISSUE-83: Scenario updates (for certain abilities andfunctional limitations)
ISSUE-92: P3P and Internet filters
ISSUE-95: bookmark API interactions
ISSUE-96: Should support for logotypes be a SHOULD or a MAY? [Techniques]
- Audian Paxson (Friday, 10 August)
- Audian Paxson (Friday, 10 August)
- michael.mccormick@wellsfargo.com (Friday, 10 August)
- Ian Fette (Friday, 10 August)
- michael.mccormick@wellsfargo.com (Friday, 10 August)
- Ian Fette (Thursday, 9 August)
- Johnathan Nightingale (Thursday, 9 August)
- Ian Fette (Thursday, 9 August)
- Thomas Roessler (Thursday, 9 August)
- Ian Fette (Thursday, 9 August)
- Dan Schutzer (Thursday, 9 August)
- Thomas Roessler (Thursday, 9 August)
- Johnathan Nightingale (Thursday, 9 August)
- Web Security Context Working Group Issue Tracker (Wednesday, 8 August)
ISSUE-97: Should logotypes be tied to EV certificates? [Techniques]
ISSUE-97: Should logotypes be tied to EV certificates?[Techniques]
ISSUE-97: Should logotypes be tied to EVcertificates?[Techniques]
ISSUE-98: Which kind of logotype should be preferred? [Techniques]
ISSUE-99: What certificate fields must be included in the identity signal? [Techniques]
marking template sections as optional for robustness only proposals
Measuring and optimizing user effort (Was: PII Editor Bar & Trusted Browser Component)
meeting Aug 8th regrets
Meeting record: WSC WG weekly 2007-07-25
Meeting record: WSC WG weekly 2007-08-01
Meeting record: WSC WG weekly 2007-08-08
New use case for malware at previously visited site
New Use Case for W3C WSC
- Ian Fette (Friday, 31 August)
- Dan Schutzer (Friday, 31 August)
- michael.mccormick@wellsfargo.com (Thursday, 30 August)
- michael.mccormick@wellsfargo.com (Thursday, 30 August)
- Dan Schutzer (Wednesday, 29 August)
- Close, Tyler J. (Tuesday, 28 August)
- Mary Ellen Zurko (Tuesday, 28 August)
- Dan Schutzer (Tuesday, 28 August)
- Dan Schutzer (Tuesday, 28 August)
- Ian Fette (Tuesday, 28 August)
- Dan Schutzer (Tuesday, 28 August)
- Audian Paxson (Monday, 27 August)
- Audian Paxson (Monday, 27 August)
- Dan Schutzer (Friday, 24 August)
- Ian Fette (Friday, 24 August)
- Dan Schutzer (Friday, 24 August)
- Ian Fette (Friday, 24 August)
- Dan Schutzer (Friday, 24 August)
- Serge Egelman (Friday, 24 August)
- Dan Schutzer (Friday, 24 August)
- Serge Egelman (Friday, 24 August)
- Dan Schutzer (Friday, 24 August)
- Dan Schutzer (Friday, 24 August)
- Bob Pinheiro (Friday, 24 August)
- Serge Egelman (Friday, 24 August)
- Serge Egelman (Friday, 24 August)
- Ian Fette (Friday, 24 August)
- Dan Schutzer (Friday, 24 August)
- Dan Schutzer (Friday, 24 August)
- Bob Pinheiro (Friday, 24 August)
- Ian Fette (Friday, 24 August)
- Bob Pinheiro (Friday, 24 August)
- Ian Fette (Friday, 24 August)
- Timothy Hahn (Friday, 24 August)
- Mary Ellen Zurko (Friday, 24 August)
- Dan Schutzer (Friday, 24 August)
- Mary Ellen Zurko (Friday, 24 August)
- Dan Schutzer (Friday, 24 August)
Next face-to-face: October 2/3 Austin Texas
Non-form-filler users (Was: PII Editor Bar & Trusted Browser Component)
Old SSL (Re: Current state of editor's draft / IdentitySignal)
PII Editor Bar & Trusted Browser Component
Proactive apoligies if I falsely nag you this week
Proposal: error handling / minimizing trust decisions
reference for myspace worm?
Resurfacing and regrets
Robustness proposal - Overriding SCI presentation
Robustness through a shared secret
Security Considerations (Re: Current state of editor's draft / IdentitySignal)
Some numbers for our use-case scenarios
straw poll: Is page info summary a non-Goal?
- Mary Ellen Zurko (Wednesday, 22 August)
- Serge Egelman (Wednesday, 22 August)
- Mary Ellen Zurko (Wednesday, 22 August)
- michael.mccormick@wellsfargo.com (Tuesday, 21 August)
- Timothy Hahn (Tuesday, 21 August)
- Thomas Roessler (Tuesday, 21 August)
- Dan Schutzer (Tuesday, 21 August)
- Johnathan Nightingale (Monday, 20 August)
- Close, Tyler J. (Wednesday, 15 August)
summary from brainstorming session in Dublin
Summary of "What is a secure page?" discussion, first draft
Survey tool
The purpose of Note use-cases
Trusted Browser Component (Re: Action 213: write a lightningproposal on wiki)
updated editor's draft: IdentitySignal
Updated editor's draft: PageInfoSummary (ACTION-281)
Web Page vs Rich Client (Re: Current state of editor's draft / IdentitySignal)
WSC Open Action Items
Last message date: Friday, 31 August 2007 22:25:45 UTC