[W3C Web Security] a take away from TPAC 2015 and some food for web authentication

Dear all,

For the ones who were not in TPAC, I wrote a take away on the security related affairs... It includes security strategy presented by Wendy, recent WebAppSec WG progress, and some new security related work.

in addition,
please note that Google, Microsoft, Paypal and NokNokLabs has transmitted to W3C a submission named FIDO 2.0, publicly availaible here :


This message and any attachments are intended solely for the addressees and may contain confidential information. Any unauthorized use or disclosure, either whole or partial, is prohibited.
E-mails are susceptible to alteration. Our company shall not be liable for the message if altered, changed or falsified. If you are not the intended recipient of this message, please delete it and notify the sender.
Although all reasonable efforts have been made to keep this transmission free from viruses, the sender will not be liable for damages caused by a transmitted virus.

Received on Thursday, 19 November 2015 14:24:16 UTC