Security Interest Group - Publications
Notes
This document contains a set of questions to be used when evaluating the security and privacy implications of web platform technologies.
Draft Notes
- Deliverers
- Security Interest Group
This document is the live "meta" Threat Model related to Decentralized Credentials. This outlines the many concerns related to these work areas and the initial principles for addressing user considerations for starting a discussion.
- Deliverers
- Security Interest Group
This document describes when, why, and how to perform threat modeling during the development of a specification at the World Wide Web Consortium (W3C). This is designed to help standards developers understand threats and countermeasures from the beginning of standard development and to document the model in the security considerations section.
This document is intended for threat modeling with the broadest definition of threat.