W3C home > Mailing lists > Public > public-webappsec@w3.org > February 2018

Teleconference Agenda: 2018-02-21

From: Mike West <mkwst@google.com>
Date: Tue, 20 Feb 2018 20:16:15 +0100
Message-ID: <CAKXHy=c+YXfTeQR=vB=5MY1O-5x=ypnA6j8Kf6C8oS9X7fKDtA@mail.gmail.com>
To: Web Application Security Working Group <public-webappsec@w3.org>
Hello, WebAppSec! We'll be having our second scheduled teleconference of
the year tomorrow (Wednesday, February 21st) at 9:00 PST, 12:00 EST, 18:00
CET, etc.

Dial-in details for the webex calls are posted member-only visible here:

Please join us on IRC and send "present+" for role-call: #webappsec on
irc.w3.org:6665 (https://irc.w3.org/?channels=webappsec)

TOPIC: Agenda Bashing

*   Chrome 68 will mark all HTTP pages as "Not secure":
*   Origin trial for signature-based SRI
in Chrome 66ish:
*   Appcache -> Secure Contexts:
more broadly in https://github.com/whatwg/html/issues/3440)

TOPIC: Minutes Approval

TOPIC: Mixed Content Level 2
We discussed
at TPAC, and a few folks recently talked about the problem space in more
detail. Seems like a good opportunity to bring the discussion to the wider

TOPIC: Exposing credentials to JavaScript.
John pinged the discussion we started at TPAC
<https://www.w3.org/2017/11/06-webappsec-minutes.html#item06>, noting that
trackers might abuse the API for nefarious purposes.

Thanks! See you tomorrow! (I'll get better at remembering to send the
agenda out earlier, I promise!)

Received on Tuesday, 20 February 2018 19:17:00 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:55:03 UTC