[126] in WWW Security List Archive
Re: An IETF working group for HTTP?
daemon@ATHENA.MIT.EDU (hallam@dxal18.cern.ch)
Fri Sep 23 16:21:25 1994
From: hallam@dxal18.cern.ch
To: jeff@spyglass.com (Jeff Hostetler), www-security@ns1.rutgers.edu
Cc: hallam@dxal18.cern.ch
In-Reply-To: Your message of "Wed, 21 Sep 94 14:10:50 MDT."
<9409211910.AA15108@fido.spyglass.com>
Date: Fri, 23 Sep 94 18:45:41 +0200
Reply-To: hallam@dxal18.cern.ch
Jeff writes:
>PS. Can someone from W3O comment on where W3O is in
>organizing such an effort ?
Problem with W3O is that it doesn't exist. However when it does exist it
would not be suprising to see the editor of the HTML spec (IE Dave Ragget)
play a pretty major part in it. The point about W3O is not to superceed
all the traditional IETF mechanisms and other standards processes it is to
suplement them.
As far as a separate security group, ie distinct from HTTP there is also
the existing PEM group to be squared. Quite a few HTTP people are players
in all three camps, especialy TIS. We don't want to start turf wars, then
again we do not want to adopt every compromise forced on PEM because
the basic Mail transport is effectively a noisy channel with random
addition of CR/LF objects and the like :-)
Hopefully we can hammer something out at Chicago when some of us meet face
to face wrt groups etc since there will be people from all the bodies
concerned and then come back and square the dirty carve up with the net :-)
Plus the main advantage of a meeting over a net discussion is that a meeting
usualy ends, the net has a habit of not comming to an agreement until
someone writes code and its a fait acomplii... We need the net equivalent
of walling up the participants in the sistine chapel until a decision is
reached while avoiding chosing the father of the Duke of Valentino.
Phill.
