HTTPS at W3C. from Mike West on 2014-11-17 (www-tag@w3.org from November 2014)

From: Mike West <mkwst@google.com>
Date: Mon, 17 Nov 2014 12:37:44 +0100
To: "www-tag@w3.org List" <www-tag@w3.org>
Cc: Wendy Seltzer <wseltzer@w3.org>, Brad Hill <hillbrad@gmail.com>
Message-ID: <CAKXHy=dpuMuEUuB=SafFyq_0+eX7mPGyrrpVqsrsg9esNb3-bQ@mail.gmail.com>

Hello, www-tag!

I just copy/pasted Mixed Content's last call URL (
http://www.w3.org/TR/mixed-content/) into an email, and I'm sad that it
can't be served over HTTPS.

Note that the WHATWG has moved to HTTPS/HSTS (https://fetch.spec.whatwg.org/).
IETF supports HTTPS (
https://tools.ietf.org/html/draft-west-origin-cookies-00). W3C is the only
major standards body that I care about that actively redirects from HTTPS
to HTTP. We're setting a bad example.

It would be wonderful if we could fix that. Based on earlier conversations
with Wendy (CC'd), it sounds like there was progress on this topic earlier
in the year. Perhaps folks on this list could either share details of a
migration plan, or even solid timelines? :)

Thanks!

--
Mike West <mkwst@google.com>
Google+: https://mkw.st/+, Twitter: @mikewest, Cell: +49 162 10 255 91

Google Germany GmbH, Dienerstrasse 12, 80331 München, Germany
Registergericht und -nummer: Hamburg, HRB 86891
Sitz der Gesellschaft: Hamburg
Geschäftsführer: Graham Law, Christine Elizabeth Flores
(Sorry; I'm legally required to add this exciting detail to emails. Bleh.)

Received on Monday, 17 November 2014 11:38:31 UTC