W3C home > Mailing lists > Public > public-webappsec@w3.org > February 2015

Re: CfC to publish FPWD of CSP Pinning; deadline Feb. 9th

From: Brad Hill <hillbrad@gmail.com>
Date: Mon, 23 Feb 2015 20:25:09 +0000
Message-ID: <CAEeYn8ip7vquC_pHxKqB29YVyBn1N1OwxpXWswUNONWvW0ti9g@mail.gmail.com>
To: Mike West <mkwst@google.com>, "public-webappsec@w3.org" <public-webappsec@w3.org>
Cc: Dan Veditz <dveditz@mozilla.com>, Wendy Seltzer <wseltzer@w3.org>
With hat=Facebook rep, I support this CfC.

-Brad Hill

On Mon Feb 02 2015 at 2:05:40 AM Mike West <mkwst@google.com> wrote:

> This is a call for consensus to publish the following draft of "CSP
> Pinning" as a First Public Working Draft:
> https://w3c.github.io/webappsec/specs/csp-pinning/published/2015-02-FPWD.html
> This document defines a new HTTP header that allows authors to instruct
> user agents to remember ("pin") and enforce a Content Security Policy for a
> set of hosts for a period of time.
> There's still work to be done, but I believe the document clearly falls
> under the group's charter, and is ready for initial publication. Do you
> agree? Please send any and all comments to public-webappsec@w3.org. This
> CfC will end with our next call, on February 9th, 2015.
> --
> Mike West <mkwst@google.com>, @mikewest
> Google Germany GmbH, Dienerstrasse 12, 80331 München,
> Germany, Registergericht und -nummer: Hamburg, HRB 86891, Sitz der
> Gesellschaft: Hamburg, Geschäftsführer: Graham Law, Christine Elizabeth
> Flores
> (Sorry; I'm legally required to add this exciting detail to emails. Bleh.)
Received on Monday, 23 February 2015 20:25:37 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:54:46 UTC