W3C home > Mailing lists > Public > public-webappsec@w3.org > March 2015

Re: [upgrade] return=secure-representation

From: Anne van Kesteren <annevk@annevk.nl>
Date: Mon, 16 Mar 2015 08:29:28 +0100
Message-ID: <CADnb78gAu-=BVpx_qrJWzjixkOZEog1GzNtGmokLiKJ9HOh5vA@mail.gmail.com>
To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Cc: "Nottingham, Mark" <mnotting@akamai.com>, Mike West <mkwst@google.com>, WebAppSec WG <public-webappsec@w3.org>
On Mon, Mar 16, 2015 at 7:12 AM, Daniel Kahn Gillmor
<dkg@fifthhorseman.net> wrote:
> I think the semantics are likely to include some sense of "it's safe to
> send me HSTS" as well, not just "redirect me", unless we are willing to
> consider some flavor of the HSTS2 suggestion.

Yeah, in light of WebSocket Prefer: hsts might make more sense.

Received on Monday, 16 March 2015 07:29:52 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:54:47 UTC