A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Web Security Working Group of the IETF.
Title : The Web Origin Concept
Author(s) : Adam Barth
Filename : draft-ietf-websec-origin-05.txt
Pages : 27
Date : 2011-09-22
This document defines the concept of an "origin", which is often
used
as the scope of authority or privilege by user agents. Typically,
user agents isolate content retrieved from different origins to
prevent malicious web site operators from interfering with the
operation of benign web sites. In addition to outlining the
principles that underlie the concept of origin, this document defines
how to determine the origin of a URI, how to serialize an origin into
a string, and an HTTP header field, named "Origin", that indicates
which origins are associated with an HTTP request.
A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-ietf-websec-origin-05.txt
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
This Internet-Draft can be retrieved at:
ftp://ftp.ietf.org/internet-drafts/draft-ietf-websec-origin-05.txt
_______________________________________________
websec mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/websec
