W3C home > Mailing lists > Public > www-xml-linking-comments@w3.org > July to September 2005

Re: XLink 1.1: Security Considerations

From: Norman Walsh <Norman.Walsh@Sun.COM>
Date: Tue, 26 Jul 2005 15:28:56 -0400
To: Bjoern Hoehrmann <derhoermi@gmx.net>
Cc: www-xml-linking-comments@w3.org
Message-id: <87mzo9nz7r.fsf@nwalsh.com>
/ Bjoern Hoehrmann <derhoermi@gmx.net> was heard to say:
|   http://www.w3.org/TR/2005/WD-xlink11-20050707/ lacks a section on
| security considerations. Please include a proper discussion about
| security and privacy issues in the document, including which issues
| are considered out of scope of the draft and why. RFC 3552 provides
| useful guidelines for this, specifically, the document should conform
| to the requirements in section 5 of that document.

It's not clear what issues you are concerned about. Would something
along the lines of the notes in the HTML Recommendation satisfy you?

  Processing XLink elements may cause URIs to be dereferenced
  automatically or in response to user input. In this case, the
  security issues of [RFC1738], section 6, should be considered.

                                        Be seeing you,
                                          norm

-- 
Norman.Walsh@Sun.COM / XML Standards Architect / Sun Microsystems, Inc.
NOTICE: This email message is for the sole use of the intended
recipient(s) and may contain confidential and privileged information.
Any unauthorized review, use, disclosure or distribution is prohibited.
If you are not the intended recipient, please contact the sender by
reply email and destroy all copies of the original message.

Received on Tuesday, 26 July 2005 19:29:05 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 27 October 2009 08:39:45 GMT