1 / 7

Agenda Tobias Gondrom March 2012

Agenda Tobias Gondrom March 2012. Websec WG IETF 83. Note Well. Any submission to the IETF intended by the Contributor for publication as all or part of an IETF Internet-Draft or RFC and any statement made within the context

tekla
Télécharger la présentation

Agenda Tobias Gondrom March 2012

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Agenda Tobias GondromMarch 2012 Websec WGIETF 83

  2. Note Well Any submission to the IETF intended by the Contributor for publication as all or part of an IETF Internet-Draft or RFC and any statement made within the context of an IETF activity is considered an "IETF Contribution". Such statements include oral statements in IETF sessions, as well as written and electronic communications made at any time or place, which are addressed to: • the IETF plenary session, • any IETF working group or portion thereof, • the IESG or any member thereof on behalf of the IESG, • the IAB or any member thereof on behalf of the IAB, • any IETF mailing list, including the IETF list itself, • any working group or design team list, or any other list • functioning under IETF auspices, • the RFC Editor or the Internet-Drafts function All IETF Contributions are subject to the rules of RFC 3978 (updated by RFC 4748) and RFC 3979 (updated by RFC 4879). Statements made outside of an IETF session, mailing list or other function, that are clearly not intended to be input to an IETF activity, group or function, are not IETF Contributions in the context of this notice. Please consult RFC 3978 (and RFC 4748) for details. A participant in any IETF activity is deemed to accept all IETF rules of process, as documented in Best Current Practices RFCs and IESG Statements. A participant in any IETF activity acknowledges that written, audio and video records of meetings may be made and may be available to the public.

  3. AGENDA • Administrativia- 5 minutes • Note takers, Jabber Scribes, Blue sheets • WG Status, draft status - Tobias - 10 Min • HSTS: draft-ietf-websec-strict-transport-sec-06 - WGLC - Jeff 10 Min + Discuss 10 Min • draft-nir-websec-extended-origin - Yoav 10 Min + Discuss 10 Min • Progression of drafts: 15 Minutes (what to do with it?) • draft-hodges-websec-framework-reqs-01 • Mime-Sniffing draft-ietf-websec-mime-sniff-03 • Frame-Options - 10 Minutes (Tobias) • CSP Header - 5 Minutes (Tobias) • Admin / open mike - 10 Minutes

  4. 2. Status of WG - Drafts • Origin: draft-ietf-websec-origin • Released as RFC6454 – well done! • cert pinning draft-ietf-websec-key-pinning-01 • Minor minor changes, plus Chris will need to raise a discussion on pin lifetime to raise to the list (might lead to larger change to the draft) • draft-hodges-websec-framework-reqs-01 • Referred to by W3C CSP draft • Mime-Sniffing draft-ietf-websec-mime-sniff-03 • Expired, issues in tracker but no progress? • Discuss next steps with framework-reqs and mime-sniff at agenda item 5

  5. 5. Progression of drafts • draft-hodges-websec-framework-reqs-01 • Referred to by W3C CSP draft • No significant discussion/work on the mailing-list • Mime-Sniffing draft-ietf-websec-mime-sniff-03 • Expired, issues in tracker but no progress?

  6. 8. Other topics / open mike • Discuss, Comments, Questions, …

  7. Thank you

More Related