Web Security IG - W3C TAG contribution to STRINT Workshop from GALINDO Virginie on 2014-02-19 (public-web-security@w3.org from February 2014)

From: GALINDO Virginie <Virginie.GALINDO@gemalto.com>
Date: Wed, 19 Feb 2014 12:19:03 +0100
To: "public-web-security@w3.org" <public-web-security@w3.org>
Message-ID: <239D7A53E5B17B4BB20795A7977613A401E2E1E9AF81@CROEXCFWP04.gemalto.com>

Dear all,

Please note that W3C TAG made a statement for the STRINT Workshop<https://www.w3.org/2014/strint/report.html>, which can be found under https://www.w3.org/2014/strint/papers/61.pdf

Extract :
The TAG is working on a best practices document which will highlight these
currently available techniques and technologies, with a view to
influencing greater adoption by Web sites. In particular, we plan to focus
on the use of Perfect Forward Secrecy over HTTPS, key strength,
certificate pinning, use of up-to-date versions of security algorithms,
HTTP Strict Transport Security and the general use of TLS in more
circumstances.

This sounds like a good plan!

Regards,
Virginie


________________________________
This message and any attachments are intended solely for the addressees and may contain confidential information. Any unauthorized use or disclosure, either whole or partial, is prohibited.
E-mails are susceptible to alteration. Our company shall not be liable for the message if altered, changed or falsified. If you are not the intended recipient of this message, please delete it and notify the sender.
Although all reasonable efforts have been made to keep this transmission free from viruses, the sender will not be liable for damages caused by a transmitted virus

Received on Wednesday, 19 February 2014 11:19:28 UTC