[web-nfc] Pull Request: Update Security section from Zoltan Kis via GitHub on 2019-11-08 (public-web-nfc@w3.org from November 2019)

From: Zoltan Kis via GitHub <sysbot+gh@w3.org>
Date: Fri, 08 Nov 2019 13:29:48 +0000
To: public-web-nfc@w3.org
Message-ID: <pull_request.opened-338677291-1573219787-sysbot+gh@w3.org>

zolkis has just submitted a new pull request for https://github.com/w3c/web-nfc:

== Update Security section ==
**WiP: do not merge! Awaiting security review.**

However, comments already welcome.

Added attacker model, threats analysis etc from the Security and Privacy document, updated for the current API.

Commented out the sections dealing with relaxing permissions based on the ID field,
but added as mechanisms for content identification.

Signature records are not specified in this PR, only the general policies with them.



See https://github.com/w3c/web-nfc/pull/440

Received on Friday, 8 November 2019 13:29:50 UTC