Hi I've submitted version -02 of the draft. It includes changes based on comments by James Manger, Adam Barth, and Tobias.
I'm looking forward to discussing this on the mailing list and in Paris. Yoav Begin forwarded message: From: "[email protected]<mailto:[email protected]>" <[email protected]<mailto:[email protected]>> Subject: I-D Action: draft-nir-websec-extended-origin-02.txt Date: March 6, 2012 9:53:40 AM GMT+02:00 To: "[email protected]<mailto:[email protected]>" <[email protected]<mailto:[email protected]>> Reply-To: "[email protected]<mailto:[email protected]>" <[email protected]<mailto:[email protected]>> A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : A More Granular Web Origin Concept Author(s) : Yoav Nir Filename : draft-nir-websec-extended-origin-02.txt Pages : 9 Date : 2012-03-05 This document defines an HTTP header that allows the partitioning of a single origin (as defined in RFC 6454) into multiple origins, so that the same origin policy applies among them. The header introduced in this document allows a portal to specify that resources that appear to be from the same origin should, in fact, be treated as though they are from different origins, by extending the 3-tuple of the origin to a 4-tuple. A compliant user agent is expected to apply the same-origin policy according to the 4-tuple rather than the 3-tuple. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-nir-websec-extended-origin-02.txt Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ This Internet-Draft can be retrieved at: ftp://ftp.ietf.org/internet-drafts/draft-nir-websec-extended-origin-02.txt _______________________________________________ I-D-Announce mailing list [email protected] https://www.ietf.org/mailman/listinfo/i-d-announce Internet-Draft directories: http://www.ietf.org/shadow.html or ftp://ftp.ietf.org/ietf/1shadow-sites.txt Scanned by Check Point Total Security Gateway.
_______________________________________________ websec mailing list [email protected] https://www.ietf.org/mailman/listinfo/websec
