- From: Chris Lilley <chris@w3.org>
- Date: Thu, 6 Dec 2012 15:38:45 +0100
- To: public-webfonts-wg@w3.org <public-webfonts-wg@w3.org>
Hello folks, The registration of the Internet Media Type is moving forward. We have had comments from their Expert Reviewer, which I will forward in a moment. The overall review was strongly positive. As a result of comments, I propose to add two paragraphs to the security section. One states that WOFF does not provide internal privacy protections, and if these are needed they should be provided externally. The second is basically a pointer to the Private Data section, alerting the reader that this section exists, pointing to the existing and tested requirement that this section to not affect rendering, and asserting that WOFF provides no facility for any embedded binary code in the Private Data section to be executed. I updated the editors draft to show the proposed wording. If anyone has a problem with the wording, please speak up. I have verified that it does not add any new conformance requirements and would not affect existing implementations. http://dev.w3.org/webfonts/WOFF/spec/#appendix-b I also added to the changes appendix, to note the above and to state that the change was made in response to IANA expert review. -- Chris Lilley Technical Director, Interaction Domain W3C Graphics Activity Lead, Fonts Activity Lead Co-Chair, W3C Hypertext CG Member, CSS, WebFonts, SVG Working Groups
Received on Thursday, 6 December 2012 14:38:24 UTC