Re: HTTPS Client Certificate Authentication - Browser Implementation Guidelines from Melvin Carvalho on 2014-05-18 (public-webid@w3.org from May 2014)

From: Melvin Carvalho <melvincarvalho@gmail.com>
Date: Sun, 18 May 2014 11:41:20 +0200
To: Anders Rundgren <anders.rundgren.net@gmail.com>
Cc: "public-webid@w3.org" <public-webid@w3.org>
Message-ID: <CAKaEYhL5-3ZT67=v34m_gBTdRTzdScCqHuZAQY1MAsWxfRD_sQ@mail.gmail.com>

On 18 May 2014 10:01, Anders Rundgren <anders.rundgren.net@gmail.com> wrote:

> If the WebID folks including TimBL believe that the only problem is the
> UI,


Has anyone stated this?



> the most
> logical thing to do would be creating a document like the subject line
> suggests.
>

+1


>
> There is a risk that the vendors will simply laugh at such a request,  but
> that's much
> better than promising improvements that so far haven't even been
> acknowledged by
> those who are supposed to implement them.
>
> I would personally be very interested in hearing what the "right" session
> inactivity
> timeout for logout is.  Client-side enforced logout requires TCP reset.
>
> Anders
>
>

Received on Sunday, 18 May 2014 09:41:48 UTC