- From: Simone Onofri <simone@w3.org>
- Date: Tue, 27 Jan 2026 08:04:18 +0100
- To: public-security@w3.org
- Cc: Amir Sharif <asharif@fbk.eu>
Dear Security Fellows, Having received no objections, I am proceeding with the transition request. Thank you, Simone > On 20 Jan 2026, at 08:51, Amir Sharif <asharif@fbk.eu> wrote: > > Hi Simone, > > I support the publishing of the "Cryptography usage in Web Standards". > > Kind regards, > Amir > > On Tue, Jan 20, 2026 at 12:20 AM Greg Bernstein <gregb@grotto-networking.com> wrote: > Hi Simone, I support the publishing of the “Cryptography usage in Web Standards”. > This is a useful addition for the W3C and points to a lot of useful information. I’ve used some of the references in the data integrity specifications, in particular the NIST key management recommendation. > Cheers Greg > On 1/19/26 3:11 AM, Simone Onofri wrote: >> Dear Group, >> >> This is a Call for Consensus (CfC) for the Group publishing the “Cryptography usage in Web Standards" and for enabling autopublish. >> >> [[ >> This document provides a concise, practical, and standards-aligned reference to standardized cryptographic algorithms and their recommended use across different contexts. It offers guidelines on when and how to use specific algorithms, parameter choices, and common pitfalls to avoid, in order to promote a consistent, standards-based, and secure use of cryptography across web technologies. >> ]] >> >> During the 2025-10-28 meeting, the participants had already agreed. We alredy opened the CfC on GitHub, but as I see, the e-mail is better for us. To ensure everyone has an opportunity to weigh in, this will serve as a record of the group's decision, one way or another. >> >> The deliverable is available for inspection here: >> >> https://w3c.github.io/security-guidelines-cryptography/ >> >> In response, please state one of the following: >> >> * I support the publishing of the "Cryptography usage in Web Standards”. >> * I do not support the publishing of the "Cryptography usage in Web Standards”, but it's fine if we decide to proceed >> * I object to the adoption of the "Cryptography usage in Web Standards” due to Issues filed in the open issue <#number> of the securityig repository >> >> If there are no further objections, we will confirm the decision by 2026-01-26, at midnight Pacific time. >> >> Just so you know, if the deliverable is published, it will be marked as a First Group Note Draft, which does not imply W3C endorsement. >> >> Thank you, >> >> Simone >> > -- > Dr. Greg M. Bernstein, https://www.grotto-networking.com > ​ > > > -- > Amir Sharif > Researcher > Security and Trust Research Unit > Cybersecurity Center > Fondazione Bruno Kessler, Trento, Italy > personal page:https://st.fbk.eu/people/amir-sharif FBK web: www.fbk.eu > Cybersecurity center web: www.cs.fbk.eu > Security &Trust web: st.fbk.eu > > > > -- > Le informazioni contenute nella presente comunicazione sono di natura privata e come tali sono da considerarsi riservate ed indirizzate esclusivamente ai destinatari indicati e per le finalità strettamente legate al relativo contenuto. Se avete ricevuto questo messaggio per errore, vi preghiamo di eliminarlo e di inviare una comunicazione all’indirizzo e-mail del mittente. > -- > The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. If you received this in error, please contact the sender and delete the material.
Received on Tuesday, 27 January 2026 07:04:51 UTC