TAG Draft: Self-Review Questionnaire: Security and Privacy

The Technical Architecture Group has published a Group Note of Self-Review Questionnaire: Security and Privacy. This document lists a set of questions one could ask about the security and privacy impact of a new feature or specification. It is meant as a tool that groups or individuals can use as a guide during a self-review, pointing towards important questions in areas where expertise might be lacking. It is not meant as a “security checklist”, nor does an editor or groups use of this questionnaire obviate the editor or groups responsibility to obtain “wide review” of a specifications security and privacy properties before publication.