HTTP Security Properties

January 23rd, 2008

With my permission, Paul Hoffman and Alexey Melnikov have used a draft of mine as the basis of Security Requirements for HTTP. It’s a deliverable for the current IETF HTTP WG.

Originally, I had intended to sketch an intractable set of trade-offs concerning presentation control, strength of security mechanisms, and economic concerns like scalability. I wonder if it will turn out like I planned.

Posted by rsayre Filed in Uncategorized
1 Comment »

One Response to “HTTP Security Properties”

  1. Paul Hoffman Says:
    January 23rd, 2008 at 8:00 pm

    Dude, didn’t you learn anything in the Atompub WG? Of course it is not going to turn out like you planned. It isn’t going to turn out as I planned either. I just hope it turns out useful. The base material (particularly the list of intractable tradeoffs) gets us only part of the way there.