Re: Transition Request: Subresource Integrity to FPWD

Hi Henry,
(moving chairs to bcc, +public-webappsec)

On 03/20/2014 09:32 AM, Henry S. Thompson wrote:
> So I'm curious, perhaps even concerned, about the overlap between this
> work and the IETF.  Is the WG, or are you personally, regularly in
> touch with the right people at the IETF to be sure you're not stepping
> on toes over there, with respect to WebAppSec in general, and this
> document's proposals in particular?

What coordination are you thinking about? In general, Philippe and I are
liaising with IETF and watching the saag and websec work, but if there's
something you think we're missing, please say more.
> 
> Um, and I'm even _more_ concerned because in trying to understand this
> spec, I read (section 3.4) that it is essentially a set of
> modifications to something called "the Fetch spec", which is not
> linked to, or in the References section, or otherwise identified.
> This should not have been allowed to be published in this state!

Fetch is in HTML5,
http://dev.w3.org/html5/spec-LC/fetching-resources.html

--Wendy


-- 
Wendy Seltzer -- wseltzer@w3.org +1.617.715.4883 (office)
Policy Counsel and Domain Lead, World Wide Web Consortium (W3C)
http://wendy.seltzer.org/        +1.617.863.0613 (mobile)

Received on Thursday, 20 March 2014 14:11:32 UTC