Re: "Secure Introduction of Internet-Connected Things" (was Re: [webappsec] Agenda for MONDAY Teleconference 2014-10-20, 12:00 PDT) from Brad Hill on 2014-10-20 (public-webappsec@w3.org from October 2014)

From: Brad Hill <hillbrad@gmail.com>
Date: Mon, 20 Oct 2014 12:05:39 -0700
To: Chris Palmer <palmer@google.com>
Cc: Adrienne Porter Felt <felt@google.com>, Mike West <mkwst@google.com>, "public-webappsec@w3.org" <public-webappsec@w3.org>
Message-ID: <CAEeYn8h7bUJyaGcNg18-uZ9d2oa7bv2cGtZysymSBV=edGaZMQ@mail.gmail.com>

Or you get ideas from a bigger set of stakeholders and experts than
any one company might have.  :)

On Mon, Oct 20, 2014 at 12:04 PM, Chris Palmer <palmer@google.com> wrote:
> On Mon, Oct 20, 2014 at 11:53 AM, Adrienne Porter Felt <felt@google.com> wrote:
>
>> Does it make sense for this to begin as spec work and then get pushed to
>> browsers, or should we encourage each browser vendor to start working on the
>> problem? Then once there are reasonable ideas out there, we can start
>> working on specs and moving forwards an agreed-upon standard.
>
> The latter. Specifications must come after trial-and-error
> implementation. Otherwise you get design by committee.

Received on Monday, 20 October 2014 19:06:07 UTC