public-wsc-wg@w3.org from March 2007 by date

Friday, 30 March 2007

• Recommendations for "Lightening Discussions" at next week's meeting Mary Ellen Zurko
• Threat trees & use cases updated Stuart E. Schechter

Thursday, 29 March 2007

• RE: Rec Proposal: Separate in-browser editor for entry of Personally Identifiable Information (PII) Close, Tyler J.
• timeline in our wiki Mary Ellen Zurko
• Re: ACTION-149: FSTC's list of authentication techniques (BMA taxonomy) Mary Ellen Zurko
• RE: ACTION-149: FSTC's list of authentication techniques (BMA taxonomy) Mary Ellen Zurko
• Re: Rec Proposal: Separate in-browser editor for entry of Personally Identifiable Information (PII) Mary Ellen Zurko
• RE: Rough proposal: Contextual Password Warnings Mary Ellen Zurko

Wednesday, 28 March 2007

• (Corrected) Action item summary: WSC WG weekls 2007-03-28 Thomas Roessler
• Meeting record: WSC WG weekly 2007-03-20 Thomas Roessler
• Next steps on threat trees Thomas Roessler
• Action item summary: WSC WG weekls 2007-03-28 Thomas Roessler
• [fwd] [fwd] Re: Defining different user agent classes for conformance? (from: ij@w3.org) (from: tlr@w3.org) Thomas Roessler
• ISSUE-24: [editorial] Add \"known systemic flaws\" to goals Web Security Context Issue Tracker
• diffmk Thomas Roessler
• RE: ACTION-149: FSTC's list of authentication techniques (BMA taxonomy) Doyle, Bill
• Re: ACTION-156: List of privacy and security indicators Serge Egelman
• Re: ACTION-156: List of privacy and security indicators Praveen Alavilli
• ACTION-149: FSTC's list of authentication techniques (BMA taxonomy) Chuck Wade

Tuesday, 27 March 2007

• Introduction: Luis Barriga (Ericsson) Luis Barriga \(KI/EAB\)
• [fwd] Agenda, WEDNESDAY, 28 March, WSC Call (from: Mary_Ellen_Zurko@notesdev.ibm.com) Thomas Roessler
• Re: Rec Proposal: Separate in-browser editor for entry of Personally Identifiable Information (PII) Shawn Duffy

Monday, 26 March 2007

• Re: ACTION-106 Propose clarifying language for 8.2.5 Mike Beltzner
• RE: ACTION-106 Propose clarifying language for 8.2.5 Close, Tyler J.
• RE: ISSUE-16: Create section 9.2.6 as per ACTION-105 Close, Tyler J.
• Re: ACTION-164 - Elaborate Cross Site Scripting in Wiki Johnathan Nightingale
• RE: ISSUE-17: Amend section 8.2 as per ACTION-103 Close, Tyler J.
• Re: ACTION-164 - Elaborate Cross Site Scripting in Wiki Mary Ellen Zurko
• RE: ISSUE-17: Amend section 8.2 as per ACTION-103 Close, Tyler J.
• RE: ISSUE-20: Potential additions to Available Security Information Doyle, Bill
• Re: ACTION-156: List of privacy and security indicators Serge Egelman
• RE: Rough proposal: Contextual Password Warnings Doyle, Bill
• Re: ISSUE-22: Rephrase favicon text Mike Beltzner
• Re: ISSUE-21: Reply to question - what do pword managers do to ensure they don\'t \"leak\" pwords? Johnathan Nightingale
• Re: ACTION 152, 113 -- Fun with glossaries Mary Ellen Zurko
• Re: ISSUE-20: Potential additions to Available Security Information Johnathan Nightingale
• ISSUE-23: Rephrase background on usable security in Process secion Web Security Context Issue Tracker
• ISSUE-22: Rephrase favicon text Web Security Context Issue Tracker
• ISSUE-21: Reply to question - what do pword managers do to ensure they don\'t \"leak\" pwords? Web Security Context Issue Tracker
• ISSUE-20: Potential additions to Available Security Information Web Security Context Issue Tracker
• ISSUE-19: Arrangement and formatting of use cases Web Security Context Issue Tracker
• ISSUE-18: Clarify audience of wsc-usecases Web Security Context Issue Tracker
• Re: WSC WG - timeline/roadmap Mary Ellen Zurko
• Re: Rec Proposal: Separate in-browser editor for entry of Personally Identifiable Information (PII) Mary Ellen Zurko
• Rough proposal: Contextual Password Warnings Thomas Roessler
• ACTION-156: List of privacy and security indicators Chuck Wade
• Documenting status quo Doyle, Bill

Friday, 23 March 2007

• Re: ISSUE-6 User Interface Issues for Constrained / Mobile Devices Thomas Roessler
• Re: ISSUE-11: \"Problems with the status quo\" Thomas Roessler
• Re: ISSUE-7: Mental models? Thomas Roessler
• Re: ACTION-164 - Elaborate Cross Site Scripting in Wiki Stuart E. Schechter
• Agenda, WEDNESDAY, 28 March, WSC Call Mary Ellen Zurko
• Re: ACTION-164 - Elaborate Cross Site Scripting in Wiki Stuart E. Schechter
• ACTION-155 OPEN Track P3P header related indicators Praveen Alavilli
• ISSUE-6 User Interface Issues for Constrained / Mobile Devices Mary Ellen Zurko
• Re: ISSUE-7: Mental models? Mary Ellen Zurko
• Re: ISSUE-8: User Education Mary Ellen Zurko
• Re: ISSUE-11: \"Problems with the status quo\" Mary Ellen Zurko
• Re: ISSUE-15: Revise section 9.2.5 as per ACTION-106 Mary Ellen Zurko
• Re: ISSUE-16: Create section 9.2.6 as per ACTION-105 Mary Ellen Zurko
• Re: ISSUE-17: Amend section 8.2 as per ACTION-103 Mary Ellen Zurko
• ACTION-164 - Elaborate Cross Site Scripting in Wiki Johnathan Nightingale
• ACTION-165 Copy definition of web user agent to glossary Mary Ellen Zurko
• Re: WSC WG - timeline/roadmap Mike Beltzner

Thursday, 22 March 2007

• WSC WG - timeline/roadmap Mary Ellen Zurko

Wednesday, 21 March 2007

• Rec Proposal: Separate in-browser editor for entry of Personally Identifiable Information (PII) Close, Tyler J.

Tuesday, 20 March 2007

• Meeting record: WSC WG weekly 2007-03-13 Thomas Roessler
• Action item summary: 2007-02-20 Thomas Roessler
• Re: ACTION-128 Document current practice in terms of security UI robustness Mary Ellen Zurko
• RE: ACTION-148 Discussion: The role of technology-specific security aids in our recommendations Mary Ellen Zurko
• hanging out on IRC Mary Ellen Zurko
• remember, use the issues Mary Ellen Zurko
• ISSUE-17: Amend section 8.2 as per ACTION-103 Web Security Context Issue Tracker
• ISSUE-16: Create section 9.2.6 as per ACTION-105 Web Security Context Issue Tracker
• ISSUE-15: Revise section 9.2.5 as per ACTION-106 Web Security Context Issue Tracker

Monday, 19 March 2007

• RE: ISSUE-13 OPEN Mez' Note Review 2007-03-02 Note: use cases etc. Close, Tyler J.
• RE: Documenting the status quo Doyle, Bill
• Summary of action items: 2007-03-13 Thomas Roessler

Friday, 16 March 2007

• Re: ACTION-128 Document current practice in terms of security UI robustness Mike Beltzner
• RE: ACTION-148 Discussion: The role of technology-specific security aids in our recommendations Close, Tyler J.
• Agenda, 20 March, WSC Call Mary Ellen Zurko
• ACTION-108 contribute more studies for 8.3 Mary Ellen Zurko

Wednesday, 14 March 2007

• ISSUE-13 OPEN Mez' Note Review 2007-03-02 Note: use cases etc. Mary Ellen Zurko
• Re: interesting issue found yesterday Yngve Nysaeter Pettersen
• Re: interesting issue found yesterday Serge Egelman
• Re: interesting issue found yesterday Timothy Hahn
• Re: interesting issue found yesterday Yngve Nysaeter Pettersen
• Re: interesting issue found yesterday Serge Egelman
• interesting issue found yesterday Timothy Hahn
• Meeting record: WSC WG weekly 2007-03-06 Thomas Roessler
• Re: Threat Trees Stuart E. Schechter
• Phishing attacks target CareerBuilder.com users Mary Ellen Zurko
• ISSUE-14: Technologies that reduce risk Web Security Context Issue Tracker
• Re: Threat Trees Mary Ellen Zurko

Tuesday, 13 March 2007

• Re: Documenting the status quo Mary Ellen Zurko
• Re: Is there a way to see differences in our wiki? Serge Egelman
• Introduction Serge Egelman
• Is there a way to see differences in our wiki? Mary Ellen Zurko
• RecommendationIndex area Mary Ellen Zurko
• ACTION 152, 113 -- Fun with glossaries Stuart E. Schechter
• Re: ACTION-148 Discussion: The role of technology-specific security aids in our recommendations Johnathan Nightingale
• WG members reviewing wsc-usecases Mary Ellen Zurko
• Re: Documenting the status quo Praveen Alavilli
• Re: ACTION-151 update security context - User agents and robustness of authentication schemes Praveen Alavilli
• Re: ACTION-148 Discussion: The role of technology-specific security aids in our recommendations Timothy Hahn
• Re: ACTION-148 Discussion: The role of technology-specific security aids in our recommendations Mary Ellen Zurko
• Fw: Agenda, 13 March, WSC Call Mary Ellen Zurko

Monday, 12 March 2007

• Threat Trees Stuart E. Schechter
• Re: Catching up with the group Mary Ellen Zurko
• Catching up with the group Shawn Duffy
• Re: Are we dropping the glossary? (Re: ACTION-96 Draft initial outline of glossary) Timothy Hahn
• ACTION-151 update security context - User agents and robustness of authentication schemes Doyle, Bill
• Re: ACTION-140 Propose non-goals material re other app contexts Thomas Roessler
• Are we dropping the glossary? (Re: ACTION-96 Draft initial outline of glossary) Thomas Roessler

Friday, 9 March 2007

• Minutes: WSC WG weekly 2007-02-20 Thomas Roessler
• Re: ACTION-98 Add references for 8.1.2 Mary Ellen Zurko

Thursday, 8 March 2007

• Agenda, 13 March, WSC Call Mary Ellen Zurko
• ACTION-140 Propose non-goals material re other app contexts Mary Ellen Zurko
• ACTION-133 Offer text suggestion around "many users" Mary Ellen Zurko
• ACTION-127 Document current practice in terms of security UI robustness Mary Ellen Zurko
• ACTION-126 Document current practice in terms of security UI robustness Mary Ellen Zurko
• ACTION-114 suggesting alternative wording for 8.4.1 Mary Ellen Zurko
• ACTION-110 Create new subsection under 8.2 to classify types of attacks Mary Ellen Zurko
• Re: ACTION-108 contribute more studies for 8.3 Mary Ellen Zurko
• ACTION-99 draft text for section 8, covering "block pages" Mary Ellen Zurko
• ACTION-98 Add references for 8.1.2 Mary Ellen Zurko
• ACTION-96 Draft initial outline of glossary Mary Ellen Zurko
• RE: Documenting the status quo Doyle, Bill

Wednesday, 7 March 2007

• RE: Produce material on name-based virtual hosting and TLS Mary Ellen Zurko

Tuesday, 6 March 2007

• Introduction: Praveen Alavilli (AOL) Praveen Alavilli

Wednesday, 7 March 2007

• RE: Produce material on name-based virtual hosting and TLS Hallam-Baker, Phillip

Tuesday, 6 March 2007

• Produce material on name-based virtual hosting and TLS Hallam-Baker, Phillip
• Documenting the status quo Mary Ellen Zurko
• Fw: US clocks moving to Summer Time this Sunday, 11 March Mary Ellen Zurko
• Introduction: Pascal Manzano (ENISA) Pascal Manzano
• Introduction Shawn Duffy
• ACTION-148 Discussion: The role of technology-specific security aids in our recommendations Johnathan Nightingale
• FTC Workshop on reducing identity theft through enhanced authentication Hal Lockhart
• Re: ACTION-107 : Create a library of testcases / examples of attacks listed in section 8 Johnathan Nightingale
• Fw: ACTION-128 Document current practice in terms of security UI robustness Mary Ellen Zurko
• Re: ACTION-107 : Create a library of testcases / examples of attacks listedin section 8 Mike Beltzner
• Re: ACTION-107 : Create a library of testcases / examples of attacks listed in section 8 Mary Ellen Zurko
• Fw: ACTION-128 Document current practice in terms of security UI robustness Mary Ellen Zurko
• Fw: ACTION-106 Propose clarifying language for 8.2.5 Mary Ellen Zurko
• Fw: ACTION-105 Propose text on notifiaction / information bar Mary Ellen Zurko
• ACTION-117 : Contribute material re confirmation bias to note Mike Beltzner
• ACTION-107 : Create a library of testcases / examples of attacks listed in section 8 Mike Beltzner
• ACTION-106 Propose clarifying language for 8.2.5 Mike Beltzner
• ACTION-128 Document current practice in terms of security UI robustness Mike Beltzner
• ACTION-105 Propose text on notifiaction / information bar Mike Beltzner
• Re: ACTION-111 Track rob tracking URL scrolling issues Mike Beltzner
• ACTION-103 Propose descriptive text on firefox anti-phishing UI (for 8.2) Mike Beltzner

Monday, 5 March 2007

• May f2f in Dublin Mary Ellen Zurko
• Fw: Experience with usability testing in WGs? Mary Ellen Zurko
• Transition announcement: First Public Working Draft of WSC WG Note Mary Ellen Zurko
• reviewing our Note, Doyle, Bill
• RE: reviewing our Note, part 2 Doyle, Bill

Friday, 2 March 2007

• ISSUE-13: Mez\' Note Review Web Security Context Issue Tracker
• reviewing our Note, part 2 Mary Ellen Zurko
• Rescheduling our regular meetings Mary Ellen Zurko
• Agenda, 06 March, WSC Call Mary Ellen Zurko
• FPWD of Note is out Thomas Roessler

Thursday, 1 March 2007

• ACTION-117 Contribute material re confirmation bias to note Mary Ellen Zurko
• ACTION-116 Check whether security usability of form submission is covered in Note Mary Ellen Zurko
• ACTION-111 Track rob tracking URL scrolling issues Mary Ellen Zurko
• ACTION-110 Create new subsection under 8.2 to classify types of attacks Mary Ellen Zurko
• ACTION-109 to propose more elaborate text for 8.3.1 ("padlock icon") Mary Ellen Zurko
• ACTION-108 contribute more studies for 8.3 Mary Ellen Zurko
• ACTION-103 Propose descriptive text on firefox anti-phishing UI (for 8.2) Mary Ellen Zurko
• ACTION-105 Propose text on notifiaction / information bar Mary Ellen Zurko
• ACTION-106 Propose clarifying language for 8.2.5 Mary Ellen Zurko
• Re: ACTION-99 draft text for section 8, covering "block pages" Thomas Roessler
• Re: ACTION-98 Add references for 8.1.2 Thomas Roessler
• ACTION-99 draft text for section 8, covering "block pages" Mary Ellen Zurko
• Re: ACTION-98 Add references for 8.1.2 Mary Ellen Zurko
• Re: ACTION-98 Add references for 8.1.2 Thomas Roessler
• ACTION-98 Add references for 8.1.2 Mary Ellen Zurko
• ACTION-97 Seed and drive process to document current-generation undocumented safeguards in wiki Mary Ellen Zurko
• ACTION-94 Draft subsections for 8 about "compelling user interface", crypto Mary Ellen Zurko
• ACTION-90 Ask Rob Franco to document what certification verification errors IE7 displays Mary Ellen Zurko
• ACTION-72 Track RobFranco proposing use cases to deal with scriptable areas Mary Ellen Zurko
• ACTION-71 Propose history related use-case Mary Ellen Zurko
• Techniques to make security indicators robust against spoofing Mary Ellen Zurko

Last message date: Friday, 30 March 2007 18:42:27 UTC