| Security
homeThe work of the Security Activity follows two main directions. The Web Security Context Working Group focuses on the challenges that arise when users encounter currently deployed security technology, such as TLS: While this technology achieves its goals on a technical level, attackers' strategies shift towards bypassing the security technology instead of breaking it. When users do not understand the security context in which they operate, then it becomes easy to deceive and defraud them. The second direction of the work concerns XML security technologies, first in the XML Security Specifications Maintenance WG, then in the upcoming, and more broadly scoped XML Security WG".
The Web Security Context Working Group follows up on the W3C Workshop on Transparency and Usability of Web Authentication (Workshop report), held in New York City on 15 and 16 March 2006. The Working Group has finished work on its use case and requirements note, and is currently working to bring its recommendation-track deliverable in shape for a Last Call in late June.
The XML Security Specifications Maintenance Working Group has successfully published XML Signature 2nd Edition. The Working Group is currently spending time on documenting Best Practices for XML Signature. We expect to see most of the participants in this work again in the upcoming XML Security WG, which will take up the results from the 2007 Workshop on Next Steps with XML Signature and Encryption to indeed take next steps with these specifications, and which we expect to also continue work on XML Signature best practices.
The Web Security Context Working Group successfully concluded the Last Call for its use case and requirements document, and published the final deliverable as a Working Group Note. The Working Group identified the parts of its recommendation track deliverable that it plans to take to a Last Call in June 2008, and is currently working through issues with these parts. The Working Group anticipates publication of a new Working Draft between the date of this Activity Statement and the Advisory Committee meeting.
The XML Security Specifications Maintenance Working Group assisted the XML Core Working Group to prepare a successful Proposed Recommendation phase of Canonical XML 1.1, and saw XML Signature 2nd Edition through its own Proposed Edited Recommendation phase. Both specifications are now Recommendations.
The XML Security Working Group is currently being constituted. The group will have its initial face-to-face meeting on July 16/17 in Barcelona, Spain.
The Web Security Context Working Group anticipates publication of a Last Call Working Draft for its recommendation track deliverable in June 2008. At that point, the Team will consider a charter extension for this Working Group.
| Group | Chair | Team Contact | Charter |
|---|---|---|---|
| Web Security Context Working Group (participants) | Mary Ellen Zurko | Thomas Roessler | Chartered until 30 June 2008 |
| XML Security Working Group (participants) | Frederick Hirsch | Thomas Roessler | Chartered until 31 May 2010 |
| XML Security Specifications Maintenance Working Group (participants) | Frederick Hirsch | Thomas Roessler | Chartered until 30 June 2008 |
This Activity Statement was prepared for the April 2008 W3C Advisory Committee Meeting (Members only) per section 5 of the W3C Process Document. Generated from group data.
Thomas Roessler, Security Activity Lead
$Id: Activity.html,v 1.49 2008/06/11 12:27:23 ted Exp $