Thursday, 30 January 2014
- Re: referrer directive expressiveness
- Re: referrer directive expressiveness
- Re: referrer directive expressiveness
- Re: referrer directive expressiveness
- referrer directive expressiveness
- Re: Processing of meta element
- Re: CSP 1.1 referrer + meta >= <meta name="referrer"> ?
- Re: CSP 1.1 referrer + meta >= <meta name="referrer"> ?
- Re: Processing of meta element
- Re: CSP 1.1 referrer + meta >= <meta name="referrer"> ?
- Re: CSP 1.1 referrer + meta >= <meta name="referrer"> ?
- Processing of meta element
- CSP 1.1 referrer + meta >= <meta name="referrer"> ?
- Re: CSP formal objection.
- Re: CSP formal objection.
- Re: CSP formal objection.
Wednesday, 29 January 2014
- Re: (nonce | hash)
- (nonce | hash)
- Re: CSP formal objection.
- Re: CSP formal objection.
- Re: CSP formal objection.
- Re: CSP formal objection.
- Re: CSP formal objection.
- Re: CSP formal objection.
- Re: Beacon and CSP
- Re: CSP formal objection.
- Re: Beacon and CSP
- Re: CSP formal objection.
- Re: CSP formal objection.
- Re: CSP formal objection.
- Re: Beacon and CSP
- Re: CSP formal objection.
- Re: CSP formal objection.
- Re: Beacon and CSP
- Re: Subresource Integrity Length Extension?
- Agenda for 2014-01-28 Telecon. NOTE: new time, 1600 UTC
Tuesday, 28 January 2014
- Re: CSP formal objection.
- Re: CSP formal objection.
- Security Review of Network Service Discovery
- Re: Subresource Integrity Length Extension?
- Re: Subresource Integrity Length Extension?
Monday, 27 January 2014
- Re: Subresource Integrity Length Extension?
- Subresource Integrity Length Extension?
- Re: CSP formal objection.
- Re: CSP formal objection.
- Fwd: CSP formal objection.
Saturday, 25 January 2014
Friday, 24 January 2014
Thursday, 23 January 2014
- Re: [webappsec] Informal meetup at AppSec California?
- W3C WebAppSec WG Meeting
- [webappsec] Informal meetup at AppSec California?
- [webappsec] New WG Teleconference Time
- Re: Sub-origins
Wednesday, 22 January 2014
- Re: CfC to publish new WD of CSP 1.1
- Re: [integrity]: latency tradeoffs
- Re: CfC to publish new WD of CSP 1.1
Tuesday, 21 January 2014
- Re: CfC to publish new WD of CSP 1.1
- Re: CfC to publish new WD of CSP 1.1
- Re: CfC to publish new WD of CSP 1.1
Monday, 20 January 2014
Friday, 17 January 2014
Saturday, 18 January 2014
- Re: [webappsec] Disambiguating some subresource integrity use-cases
- Re: CSP Transition Tools
- Re: Are CSP directives case insensitive?
Friday, 17 January 2014
- Re: Are CSP directives case insensitive?
- Re: CSP Transition Tools
- Re: CSP Transition Tools
- Re: errata link broken
- [webappsec] Disambiguating some subresource integrity use-cases
- Re: CSP Transition Tools
- Re: CSP Transition Tools
- Invitation to connect on LinkedIn
- Re: Beacon and CSP
- Re: [integrity] Downloads
- Re: [integrity]: latency tradeoffs
- Re: [integrity] Downloads
- Re: CSP Transition Tools
- Re: Beacon and CSP
Thursday, 16 January 2014
- Re: [integrity]: CSS-loaded resources.
- Re: [integrity]: latency tradeoffs
- Re: [integrity] Downloads
- [integrity] Downloads
- Re: Origin-scoped cache/cookie/storage context
- errata link broken
- Re: [integrity]: Origin confusion attacks.
- Re: [integrity]: CSS-loaded resources.
- CSP 1.1: What remains open (and important)?
- Re: Holiday changes to the CSP 1.1 editor's draft.
- Re: Origin-scoped cache/cookie/storage context
- Re: webappsec-ISSUE-56 (child src navigation): Should we restrict subsequent navigation within child-src? [CSP 1.1]
- Re: Beacon and CSP
- Re: [integrity]: latency tradeoffs
- Re: [integrity]: latency tradeoffs
Wednesday, 15 January 2014
- Re: [integrity]: latency tradeoffs
- Re: [integrity]: latency tradeoffs
- Re: [integrity]: latency tradeoffs
- Re: [integrity]: latency tradeoffs
- Re: [integrity]: latency tradeoffs
- Re: Origin-scoped cache/cookie/storage context
- Re: [integrity]: latency tradeoffs
- Re: [integrity]: latency tradeoffs
- Re: [integrity]: latency tradeoffs
- Re: [integrity]: latency tradeoffs
- Beacon and CSP
- Re: [integrity]: latency tradeoffs
- Re: [integrity]: latency tradeoffs
- Re: [integrity]: latency tradeoffs
- Re: Origin-scoped cache/cookie/storage context
- Re: CSP Transition Tools
- Re: CSP Transition Tools
- Re: CSP Transition Tools
- Re: Origin-scoped cache/cookie/storage context
- Re: [integrity]: latency tradeoffs
- Re: [integrity]: latency tradeoffs
Tuesday, 14 January 2014
- Re: "Subresource Integrity" spec up for review.
- Re: [integrity]: latency tradeoffs
- webappsec-ISSUE-56 (child src navigation): Should we restrict subsequent navigation within child-src? [CSP 1.1]
- Re: CSP Transition Tools
- Re: Comments on Subresource Integrity
- [integrity]: latency tradeoffs
- Re: Comments on Subresource Integrity
- Re: "Subresource Integrity" spec up for review.
- Re: Origin-scoped cache/cookie/storage context
- Re: Hashes/Nonce Source and unsafe-inline
- Re: "Subresource Integrity" spec up for review.
- Re: Comments on Subresource Integrity
- Re: "Subresource Integrity" spec up for review.
- Re: CSP Transition Tools
Monday, 13 January 2014
Tuesday, 14 January 2014
Monday, 13 January 2014
- Re: [integrity]: CSS-loaded resources.
- Re: Holiday changes to the CSP 1.1 editor's draft.
- CSP Transition Tools
- Re: [cors] Add 'Range' to simple headers
- Re: [cors] Add 'Range' to simple headers
- Re: [cors] Add 'Range' to simple headers
- [cors] Add 'Range' to simple headers
- Re: Comments on Subresource Integrity
- Re: Comments on Subresource Integrity
- [webappsec] Agenda for Teleconference, 14 Jan 2014
Friday, 10 January 2014
Sunday, 12 January 2014
Saturday, 11 January 2014
- [integrity]: CSS-loaded resources.
- Re: Comments on Subresource Integrity
- Re: Origin-scoped cache/cookie/storage context
- Comments on Subresource Integrity
- Re: "Subresource Integrity" spec up for review.
Friday, 10 January 2014
- Re: [integrity]: Origin confusion attacks.
- Re: [integrity]: Origin confusion attacks.
- Re: [integrity]: Origin confusion attacks.
- Re: [integrity]: Origin confusion attacks.
- Re: [integrity]: Origin confusion attacks.
- Re: [CORS] Does the Authorization header qualify as a CORS credential?
- Re: Origin-scoped cache/cookie/storage context
- Re: [CORS] Does the Authorization header qualify as a CORS credential?
- Re: Holiday changes to the CSP 1.1 editor's draft.
- Re: Origin-scoped cache/cookie/storage context
- Re: [integrity]: Origin confusion attacks.
- Re: [integrity]: Origin confusion attacks.
- Re: Origin-scoped cache/cookie/storage context
- Re: Subresource Integrity and fingerprinting
- Re: [integrity]: Origin confusion attacks.
- [CORS] Does the Authorization header qualify as a CORS credential?
- Re: [integrity]: Origin confusion attacks.
Thursday, 9 January 2014
- Re: [integrity]: Origin confusion attacks.
- Re: [integrity]: Origin confusion attacks.
- Re: [integrity]: Origin confusion attacks.
- Re: [integrity]: Origin confusion attacks.
- How CSP is affected by HTML Imports (or vice versa)
- Re: [integrity]: Origin confusion attacks.
- Re: [integrity]: Origin confusion attacks.
- Re: Subresource Integrity and fingerprinting
- Re: Subresource Integrity and fingerprinting
- Origin-scoped cache/cookie/storage context
Wednesday, 8 January 2014
Thursday, 9 January 2014
- Re: Subresource Integrity strawman.
- Re: Subresource Integrity and fingerprinting
- [integrity]: Origin confusion attacks.
- Re: Subresource Integrity and fingerprinting
- Re: Subresource Integrity and fingerprinting
- Re: Subresource Integrity and fingerprinting
- Re: Subresource Integrity and fingerprinting
- Re: Subresource Integrity and fingerprinting
- Re: Subresource Integrity and fingerprinting
- Re: Subresource Integrity and fingerprinting
- Re: Subresource Integrity and fingerprinting
- Re: Subresource Integrity and fingerprinting
- Re: Subresource Integrity strawman.
- Re: Subresource Integrity strawman.
- Re: Subresource Integrity and fingerprinting
- Re: Subresource Integrity strawman.
Wednesday, 8 January 2014
- Re: Subresource Integrity strawman.
- Re: Subresource Integrity strawman.
- Re: Subresource Integrity strawman.
- Re: Subresource Integrity strawman.
- Re: Subresource Integrity strawman.
- Re: Subresource Integrity strawman.
- Re: Subresource Integrity strawman.
- Re: Subresource Integrity strawman.
- Re: Subresource Integrity strawman.
- Re: Subresource Integrity strawman.
- Re: Subresource Integrity strawman.
- Subresource Integrity strawman.
- Re: Holiday changes to the CSP 1.1 editor's draft.