ISSUE-203 (securityconsiderations): Update Security Considerations [wsc-xit] from Web Security Context Working Group Issue Tracker on 2008-05-14 (public-wsc-wg@w3.org from May 2008)

From: Web Security Context Working Group Issue Tracker <sysbot+tracker@w3.org>
Date: Wed, 14 May 2008 09:31:08 +0000 (GMT)
To: public-wsc-wg@w3.org
Message-Id: <20080514093108.185C86B646@tibor.w3.org>

ISSUE-203 (securityconsiderations): Update Security Considerations [wsc-xit]

http://www.w3.org/2006/WSC/track/issues/

Raised by: Thomas Roessler
On product: wsc-xit

The security considerations section is very rudimentary. We'll want to make it more extensive before going to Last Call.

Specific questions that I would like us to cover:

- where do we currently rely on specific user behavior to guarantee security?
- where are we making protocol assumptions?
- where are we giving choices that are more or less secure?

Received on Wednesday, 14 May 2008 09:31:40 UTC