CR: Upgrade Insecure Requests from Notifier on 2015-10-08 (public-review-announce@w3.org from October 2015)

From: Notifier <notifier@aries.w3.org>
Date: Thu, 08 Oct 2015 13:13:13 +0000
To: public-review-announce@w3.org
Message-Id: <E1ZkB0T-0001nq-Tv@aries.w3.org>

Upgrade Insecure Requests

http://www.w3.org/TR/2015/CR-upgrade-insecure-requests-20151008/

feedback due by: 2015-11-08

Abstract

This document defines a mechanism which allows authors to instruct a user agent to upgrade a priori insecure resource requests to secure transport before fetching them.

Status of the Document

This section describes the status of this document at the time of its publication. Other documents may supersede this document. A list of current W3C publications and the latest revision of this technical report can be found in the W3C technical reports index at http://www.w3.org/TR/.

This document was published by the Web Application Security Working Group as a Candidate Recommendation. This document is intended to become a W3C Recommendation. This document will remain a Candidate Recommendation at least until 8 November 2015 in order to ensure the opportunity for wide review.

The (archived) public mailing list public-webappsec@w3.org (see instructions) is preferred for discussion of this specification. When sending e-mail, please put the text “upgrade-insecure-requests” in the subject, preferably like this: “[upgrade-insecure-requests] …summary of comment…”

Publication as a Candidate Recommendation does not imply endorsement by the W3C Membership. This is a draft document and may be updated, replaced or obsoleted by other documents at any time. It is inappropriate to cite this document as other than work in progress.

The entrance criteria for this document to enter the Proposed Recommendation stage is to have a minimum of two independent and interoperable user agents that implementation all the features of this specification, which will be determined by passing the user agent tests defined in the test suite developed by the Working Group. The Working Group will prepare an implementation report to track progress.

This document was produced by a group operating under the 5 February 2004 W3C Patent Policy. W3C maintains a public list of any patent disclosures made in connection with the deliverables of the group; that page also includes instructions for disclosing a patent. An individual who has actual knowledge of a patent which the individual believes contains Essential Claim(s) must disclose the information in accordance with section 6 of the W3C Patent Policy.

This document is governed by the 1 September 2015 W3C Process Document.

Received on Thursday, 8 October 2015 13:13:17 UTC