Minutes of W3C Security Group Meeting 22 Feb 95

This was an informal technical meeting to discuss security protocol design in the W3C context. Present were security experts from member companies and other invited experts.

Related Material

NOTE: see Clarification.

The following may be helpful (the first three were distributed as handouts).

1. Meeting Agenda
2. List of Prospective Attendees.
3. Copy of Requirements Draft.
4. Input from First Virtual brought to the meeting by Darren New.
5. List of Those Actually in Attendance.
6. Clarification that no standard was endorsed by the W3C at this meeting.

Meeting Synopsis

• Key Points and Items Discussed
  • IBM emphasized the need for open payment protocols, and presented the results of their work (iKP) which they were prepared to contribute to the consortium.
  • IBM presented a method of incrementally plugging in security into a client(Snap-In).
  • A fast elliptic encoding technology offered by NeXT was discussed.
  • A range of technical and architectural issues were discussed.
  • There was a strong feeling that the SHTTP design would be a good starting point for development and the including of SSL-like and other functionality.
  • Also: export issues, MIME, SSL, SHTTP, API
• New Subgroups Formed
  1. subgroup to define payment protocols.
  2. subgroup to describe scenarios for security on the Web
  3. subgroup to help with bottom-up security coding.

Meeting Transcript

Last modified: Thu Mar 9 12:39:59 EST 1995