- From: Amir Sharif <asharif@fbk.eu>
- Date: Wed, 14 Jan 2026 16:30:08 +0100
- To: public-security@w3.org
- Cc: Simone Onofri <simone@w3.org>
- Message-ID: <CADZ6icHOA94bOWY7EY5JfGK6rw7FXTwcGt-n451cRia-uU-9TQ@mail.gmail.com>
Hi Simone, I support the publishing of the "Threat Modeling Guide". Kind regards, Amir On Wed, Jan 14, 2026 at 4:25 PM Tommaso Innocenti <innotommy@gmail.com> wrote: > Hi Simone > thanks for your support and help throughout all the group’s initiatives. > > I support the publishing of the "Threat Modeling Guide” > > Best regards > Tommaso innocenti > > > > On Thu, Jan 8, 2026 at 8:27 AM Patrick Schaller < > patrick.schaller@inf.ethz.ch> wrote: > >> Hey Simone, >> >> Thank you for your work and commitment! >> >> I support the publishing of the "Threat Modeling Guide”. >> >> Best, >> Patrick >> >> On 06.01.2026 17:36, Simone Onofri wrote: >> > Dear Group, >> > >> > This is a Call for Consensus (CfC) for the Group publishing the “Threat >> Modeling Guide” and for enabling autopublish. >> > >> > [[ >> > This document describes when, why, and how to perform threat modeling >> during the development of a specification at the World Wide Web Consortium >> (W3C). This is designed to help standards developers understand threats and >> countermeasures from the beginning of standard development and to document >> the model in the security considerations section. >> > ]] >> > >> > During the 2026-01-06 meeting, the participants had already agreed. To >> ensure everyone has an opportunity to weigh in, this will serve as a record >> of the group's decision, one way or another. >> > >> > The deliverable is available for inspection here: >> > >> > https://w3c.github.io/threat-modeling-guide/ >> > >> > In response, please state one of the following: >> > >> > * I support the publishing of the "Threat Modeling Guide”. >> > * I do not support the publishing of the "Threat Modeling Guide”, but >> it's fine if we decide to proceed >> > * I object to the adoption of the "Threat Modeling Guide” due to Issues >> filed in the open issue <#number> of the securityig repository >> > >> > If there are no further objections, we will confirm the decision by >> February 21, 2025, at midnight Pacific time. >> > >> > Just so you know, if the deliverable is published, it will be marked as >> a First Group Note Draft, which does not imply W3C endorsement. >> > >> > Please respond by 2026-01-14; at that point, this CfC will be closed. >> > >> > Thank you, >> > >> > Simone >> > >> >> -- *Amir Sharif* *Researcher* *Security and Trust Research Unit* *Cybersecurity Center* *Fondazione Bruno Kessler, Trento, Italy* personal page:https://st.fbk.eu/people/amir-sharif FBK web: www.fbk.eu Cybersecurity center web: www.cs.fbk.eu <https://cs.fbk.eu> Security &Trust web: st.fbk.eu -- -- Le informazioni contenute nella presente comunicazione sono di natura privata e come tali sono da considerarsi riservate ed indirizzate esclusivamente ai destinatari indicati e per le finalità strettamente legate al relativo contenuto. Se avete ricevuto questo messaggio per errore, vi preghiamo di eliminarlo e di inviare una comunicazione all’indirizzo e-mail del mittente. -- The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. If you received this in error, please contact the sender and delete the material.
Received on Wednesday, 14 January 2026 15:33:21 UTC