05 Nov 2009

See also: IRC log





this meeting is secure and therefore not minuted

also people that could minute are eating

Within this room there was interest in taking STS further.

The current draft can be found here: http://lists.w3.org/Archives/Public/www-archive/2009Sep/att-0051/draft-hodges-strict-transport-sec-05.plain.html#strict-transport-security-http-response-header-field

We did not discuss where this work should happen.

CSP is about preventing XSS.

I'm assuming the current draft is: https://wiki.mozilla.org/Security/CSP/Spec

Header that disables a number of features by default, allows for whitelisting.

Chose a header over a well-known location to reduce latency and log spam.

Also discussed: setting up list and wiki

And potentially organize a workshop on HTML5 security

Summary of Action Items

[End of minutes]

Minutes formatted by David Booth's scribe.perl version 1.135 (CVS log)
$Date: 2009/11/05 22:21:05 $

Scribe.perl diagnostic output

[Delete this section before finalizing the minutes.]
This is scribe.perl Revision: 1.135  of Date: 2009/03/02 03:52:20  
Check for newer version at http://dev.w3.org/cvsweb/~checkout~/2002/scribe/

Guessing input format: RRSAgent_Text_Format (score 1.00)

No ScribeNick specified.  Guessing ScribeNick: annevk
Inferring Scribes: annevk

WARNING: No "Topic:" lines found.

WARNING: No "Present: ... " found!
Possibly Present: Hixie dsinger sylvaing
You can indicate people for the Present list like this:
        <dbooth> Present: dbooth jonathan mary
        <dbooth> Present+ amy

WARNING: No meeting title found!
You should specify the meeting title like this:
<dbooth> Meeting: Weekly Baking Club Meeting

WARNING: No meeting chair found!
You should specify the meeting chair like this:
<dbooth> Chair: dbooth

Got date from IRC log name: 05 Nov 2009
Guessing minutes URL: http://www.w3.org/2009/11/05-security-minutes.html
People with action items: 

WARNING: Input appears to use implicit continuation lines.
You may need the "-implicitContinuations" option.

WARNING: No "Topic: ..." lines found!  
Resulting HTML may have an empty (invalid) <ol>...</ol>.

Explanation: "Topic: ..." lines are used to indicate the start of 
new discussion topics or agenda items, such as:
<dbooth> Topic: Review of Amy's report

[End of scribe.perl diagnostic output]