- From: Martin Thomson <martin.thomson@gmail.com>
- Date: Sun, 18 Jan 2015 21:42:47 -0800
- To: Brian Smith <brian@briansmith.org>
- Cc: "public-webappsec@w3.org" <public-webappsec@w3.org>, "Manger, James" <James.H.Manger@team.telstra.com>
On 18 January 2015 at 21:37, Brian Smith <brian@briansmith.org> wrote: > Personally, I think that SRI shouldn't use ni:/// URLs at all, because > the ni:/// syntax is noisy and problematic (e.g. the use of ";" to > delimit parameters) when used in webappsec specs like CSP. > Consequently, perhaps the use of ni:/// URLs should be replaced with > something better. :) Well, it's not like reusing a more general mechanisms, like, say ASN.1 and DER, could possibly cause problems with a security protocol, is it? I am a little surprised at how ni was selected, but that's hardly strong enough justification for a change at this stage.
Received on Monday, 19 January 2015 05:43:14 UTC