W3C home > Mailing lists > Public > public-wsc-wg@w3.org > July 2007

Section 7 - Security context ACTION-263 Review list of security information this week

From: Doyle, Bill <wdoyle@mitre.org>
Date: Mon, 2 Jul 2007 14:52:39 -0400
Message-ID: <518C60F36D5DBC489E91563736BA4B58018A25FC@IMCSRV5.MITRE.ORG>
To: "Thomas Roessler" <tlr@w3.org>, <public-wsc-wg@w3.org>, <tyler.close@hp.com>

A quick review of section 7 - 

7.1 Does HTTP provide info on page loading or is this more http status
and user agent processing that provides loading status?

7.3 How about HTTPs instead of SSL?
	Provided by HTTPs
	Use of SSL/TLS protocol that enables other security services

	SSL Server Certificate - 
	How about PKIX Certificate, it is not an SSL Cert but an X.509
cert that SSL uses. Can also be server cert or client cert.

7.3 OSCP - should be OCSP, typo

7.6 user's understanding of his task - 

Have to help me on this one.

	It has been a long day so - Do we hook something like a
breathalyzer to the user agent so we can determine user state, at least
try to determine if they drunk? WSWIt proposal - Web Surfing While
Intoxicated test, disable credit card transactions if reading is 2.0 or
greater and at 3.0 or greater user is now blind, can't see the monitor
so and mouse and keyboard are turned off?  In thinking of this, maybe I
could use this. 

I do not believe that the WSC can ask anything about users ability. If
user agent needs to be in safe mode, restricted mode, granny mode or my
favorite "Nanny Mode" that is one thing. That is a user agent
configuration determined by an authority that owns the system and
configures the user agent to operate in a specific way. 

Help information could support the user identify tasks and things that
they could be doing, this is a user agent item.

Bill D.
Received on Monday, 2 July 2007 18:53:22 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 5 February 2008 03:52:48 GMT