Hi all. The agenda is updated and the meeting slides are not on the meeting materials page.
We will be discussing a proposal to replace the session cookie mechanism. For a comprehensive review of what is wrong with using cookies to maintain sessions, you may want to read the document "Weaning the Web Off of Session Cookies" [1]. We are not likely to have time to discuss all of these issues, but we could be trying to solve them. Links: * Agenda: http://www.ietf.org/proceedings/86/agenda/agenda-86-websec * Slides: https://datatracker.ietf.org/meeting/86/materials.html#websec * Weaning the Web Off of Session Cookies: http://www.vsecurity.com/download/papers/WeaningTheWebOffOfSessionCookies.pdf Yoav [1] Not to be confused with "Weaning the IETF Off of inter-Session Cookies"
_______________________________________________ websec mailing list [email protected] https://www.ietf.org/mailman/listinfo/websec
