| Security
homeThe work of the Security Activity follows two main directions. The Web Security Context Working Group focuses on the challenges that arise when users encounter currently deployed security technology, such as TLS: While this technology achieves its goals on a technical level, attackers' strategies shift towards bypassing the security technology instead of breaking it. When users do not understand the security context in which they operate, then it becomes easy to deceive and defraud them.
The XML Security Specifications Maintenance Working Group is chartered to do limited revisions on core XML Security specifications, document best practices in the deployment and implementation of these technologies, and deliver a charter for further work that may possibly be broader. This Working Group has mostly finished its chartered work: We expect that, by the time of the Beijing Advisory Committee Meeting, XML Signature Second Edition will be under Advisory Committee Review. A charter for follow-up work (based on the outcomes of the September 2007 XML Security workshop) will have finished Advisory Committee Review. To enable the Working Group to respond to comments raised during review of the Proposed Edited Recommendation, its charter has been extended through 30 May 2008.
The Web Security Context Working Group follows up on the W3C Workshop on Transparency and Usability of Web Authentication (Workshop report), held in New York City on 15 and 16 March 2006. The Working Group has finished work on its use case and requirements note, and is currently working to bring its recommendation-track deliverable in shape for a Last Call in June.
The Web Security Context Working Group successfully concluded the Last Call for its use case and requirements document, and published the final deliverable as a Working Group Note. The Working Group identified the parts of its recommendation track deliverable that it plans to take to a Last Call in June 2008, and is currently working through issues with these parts. The Working Group anticipates publication of a new Working Draft between the date of this Activity Statement and the Advisory Committee meeting.
The XML Security Specifications Maintenance Working Group performed interop testing for Canonical XML 1.1 and assisted the XML Core Working Group in preparing the Proposed Recommendation, completed drafting a Proposed Edited Recommendation Second Edition of XML Signature and prepared and presented to the Team a draft charter for a subsequent XML Security Working Group.
The Web Security Context Working Group anticipates publication of a Last Call Working Draft for its recommendation track deliverable in June 2008. At that point, the Team will consider a charter extension for this Working Group.
The XML Security Specifications Maintenance Working Group's charter will expire on 30 May 2008, at which point we hope to have announced the results of the Advisory Committee's review of the proposed XML Security Working Group.
| Group | Chair | Team Contact | Charter |
|---|---|---|---|
| Web Security Context Working Group (participants) | Mary Ellen Zurko | Thomas Roessler | Chartered until 30 June 2008 |
| XML Security Specifications Maintenance Working Group (participants) | Frederick Hirsch | Thomas Roessler | Chartered until 30 June 2008 |
This Activity Statement was prepared for the April 2008 W3C Advisory Committee Meeting (Members only) per section 5 of the W3C Process Document. Generated from group data.
Thomas Roessler, Security Activity Lead
$Id: Activity.html,v 1.44 2008/03/19 18:39:28 ted Exp $