- From: Ionuț Ambrosie <ambrosie@spotify.com>
- Date: Fri, 26 Feb 2021 14:28:57 +0100
- To: Giorgio Maone <giorgio@maone.net>
- Cc: public-webappsec@w3.org
- Message-ID: <CALk-2-_N1B=1_A0SzqLDj-WBeOqJV7hiqnQzbsGL83CuBW8p8g@mail.gmail.com>
Sounds good to me! On Fri, Feb 26, 2021 at 2:10 PM Giorgio Maone <giorgio@maone.net> wrote: > On 25/02/21 21:00, Artur Janc wrote: > > I am, predictably, strongly supportive of publishing this as a Note. > > Deploying isolation mechanisms to protect applications from Spectre > > (and other, more traditional information leaks) is an important part > > of the security story for the ecosystem, and the document does a good > > job at distilling the guidance into a set of clear instructions for > > developers. > > +1 > > -- G > > > > > Cheers, > > -Artur > > > > On Thu, Feb 25, 2021 at 8:45 PM Daniel Veditz <dveditz@mozilla.com > > <mailto:dveditz@mozilla.com>> wrote: > > > > Call for Consensus > > > > Mike has written up a set of post-Spectre mitigation > > recommendations for web developers at > > https://mikewest.github.io/post-spectre-webdev/ > > > > This is a Call for Consensus to adopt that work as a draft and > > finish it as a Note-track document in the Web Application Security > > Working Group. A Note is a non-normative document, and in this > > case is relevant to the work WASWG is doing because it offers > > recommendations and best practices for using the features we've > > specified in this group and related features in Fetch/HTML in > > various web application scenarios. > > > > Please reply to this thread, yay or nay, before Monday March 8, > > and we'll discuss it on our next call March 16. > > > > -Dan Veditz > > > > -- > Giorgio Maone > https://maone.net > > > > -- -
Received on Friday, 26 February 2021 19:18:26 UTC