Presentation is loading. Please wait.

Presentation is loading. Please wait.

Agenda Tobias Gondrom July 2011 Websec WG IETF 81 1.

Similar presentations


Presentation on theme: "Agenda Tobias Gondrom July 2011 Websec WG IETF 81 1."— Presentation transcript:

1 Agenda Tobias Gondrom July 2011 Websec WG IETF 81 1

2 WebsecWG Welcome to Websec WG meeting at IETF 81 in Quebec Web page: charter, current documents Mailing List: To Subscribe: https://www.ietf.org/mailman/listinfo/websec https://www.ietf.org/mailman/listinfo/websec Jabber: Audio: Chairs: Tobias Gondrom Alexey Melnikov Area Director: Peter Saint-Andre 2

3 Note Well Any submission to the IETF intended by the Contributor for publication as all or part of an IETF Internet-Draft or RFC and any statement made within the context of an IETF activity is considered an "IETF Contribution". Such statements include oral statements in IETF sessions, as well as written and electronic communications made at any time or place, which are addressed to: the IETF plenary session, any IETF working group or portion thereof, the IESG or any member thereof on behalf of the IESG, the IAB or any member thereof on behalf of the IAB, any IETF mailing list, including the IETF list itself, any working group or design team list, or any other list functioning under IETF auspices, the RFC Editor or the Internet-Drafts function All IETF Contributions are subject to the rules of RFC 3978 (updated by RFC 4748) and RFC 3979 (updated by RFC 4879). Statements made outside of an IETF session, mailing list or other function, that are clearly not intended to be input to an IETF activity, group or function, are not IETF Contributions in the context of this notice. Please consult RFC 3978 (and RFC 4748) for details. A participant in any IETF activity is deemed to accept all IETF rules of process, as documented in Best Current Practices RFCs and IESG Statements. A participant in any IETF activity acknowledges that written, audio and video records of meetings may be made and may be available to the public. 3

4 AGENDA 1. Administrativia - 5 minutes Note takers, Jabber Scribes, Blue sheets 2. WG Status, draft status, misc - Tobias - 15 min Origin (incl. Principles of “) WGLC Mime-Sniffing, 3. HSTS: draft-ietf-websec-strict-transport-sec-01 - Jeff 20 min + discussion 10 min 4. draft-hodges-websec-framework-reqs-00 - Jeff 10 min + discussion 10 min 5. W3C Web App Sec briefing (CSP, reqs,...) - ??? on behalf of Brad - 10 min + discussion 10 min 6. Frame-Options – adoption as WG item Tobias 10 min + discuss 10 min 7. Admin / open mike - 10 min 4

5 AGENDA 1. Administrativia - 5 minutes Note takers, Jabber Scribes, Blue sheets 2. WG Status, draft status, misc - Tobias - 15 min Origin (incl. Principles of “) WGLC Mime-Sniffing, 3. HSTS: draft-ietf-websec-strict-transport-sec-01 - Jeff 20 min + discussion 10 min 4. draft-hodges-websec-framework-reqs-00 - Jeff 10 min + discussion 10 min 5. W3C Web App Sec briefing (CSP, reqs,...) - ??? on behalf of Brad - 10 min + discussion 10 min 6. Frame-Options – adoption as WG item Tobias 10 min + discuss 10 min 7. Admin / open mike - 10 min 5

6 2. Status of WG - Drafts Origin: draft-ietf-websec-origin-02 Now includes draft-abarth-principles-of-origin-00 Included feedback from mailing-list discussion of past weeks Initiated extended WG LC (Aug-15) Further reviewers / Further comments? Sniffing: draft-ietf-websec-mime-sniff-03 Not much review in the past weeks Conflict with draft-masinter-web-info-02 unresolved/undiscussed? Media Types for Fonts (not in registry/sniffing)? 6

7 AGENDA 1. Administrativia - 5 minutes Note takers, Jabber Scribes, Blue sheets 2. WG Status, draft status, misc - Tobias - 15 min Origin (incl. Principles of “) WGLC Mime-Sniffing, 3. HSTS: draft-ietf-websec-strict-transport-sec-01 - Jeff 20 min + discussion 10 min 4. draft-hodges-websec-framework-reqs-00 - Jeff 10 min + discussion 10 min 5. W3C Web App Sec briefing (CSP, reqs,...) - ??? on behalf of Brad - 10 min + discussion 10 min 6. Frame-Options – adoption as WG item Tobias 10 min + discuss 10 min 7. Admin / open mike - 10 min 7

8 AGENDA 1. Administrativia - 5 minutes Note takers, Jabber Scribes, Blue sheets 2. WG Status, draft status, misc - Tobias - 15 min Origin (incl. Principles of “) WGLC Mime-Sniffing, 3. HSTS: draft-ietf-websec-strict-transport-sec-01 - Jeff 20 min + discussion 10 min 4. draft-hodges-websec-framework-reqs-00 - Jeff 10 min + discussion 10 min 5. W3C Web App Sec briefing (CSP, reqs,...) – Thomas 10 min + discussion 10 min 6. Frame-Options – adoption as WG item Tobias 10 min + discuss 10 min 7. Admin / open mike - 10 min 8

9 AGENDA 1. Administrativia - 5 minutes Note takers, Jabber Scribes, Blue sheets 2. WG Status, draft status, misc - Tobias - 15 min Origin (incl. Principles of “) WGLC Mime-Sniffing, 3. HSTS: draft-ietf-websec-strict-transport-sec-01 - Jeff 20 min + discussion 10 min 4. draft-hodges-websec-framework-reqs-00 - Jeff 10 min + discussion 10 min 5. W3C Web App Sec briefing (CSP, reqs,...) – Thomas 10 min + discussion 10 min 6. Frame-Options – adoption as WG item Tobias 10 min + discuss 10 min 7. Admin / open mike - 10 min 9

10 7. Admin - Milestones Achieved milestones Media Type Sniffing Web Origin Concept Strict Transport Security HTTP Application Security Problem Statement and Requirements Web Origin Concept – LC initiated (Aug-15) Next milestones: Strict Transport Security – LC? Media Type Sniffing – LC when? HTTP Application Security Problem Statement and Requirements – LC when? Possible re-chartering 10

11 7. Admin - Possible future things on the radar CSP Header: CSP is done in W3C Web App Sec, but CSP header should be done in websec Volunteer editors … other topics? Progress to LC on drafts? Opinions on adoption of new drafts? 11

12 8. Other topics / open mike Discuss, Comments, Questions, … 12

13 Thank you 13


Download ppt "Agenda Tobias Gondrom July 2011 Websec WG IETF 81 1."

Similar presentations


Ads by Google