websec -- Web Application Security Minus Authentication and Transport
About websec	English (USA)
Web HTTP Application Security Minus Authentication and Transport With the arrival of new attacks the introduction of new web security indicators, security techniques, and policy communication mechanisms have sprinkled throughout the various layers of the Web and HTTP. The work will be with the Web application and Web security communities. The scope is HTTP applications security, but does not include HTTP authentication, nor internals of transport security which are addressed by other working groups (although it may make reference to transport security as an available security "primitive"). Additionally, the WG will standardize a small number of selected specifications that have proven to improve security of Internet Web applications. To see the collection of prior postings to the list, visit the websec Archives.
Using websec
To post a message to all the list members, send email to websec@ietf.org. You can subscribe to the list, or change your existing subscription, in the sections below.
Subscribing to websec
Subscribe to websec by filling out the following form. You will be sent email requesting confirmation, to prevent others from gratuitously subscribing you. This is a private list, which means that the list of members is not available to non-members. Your email address:   Your name (optional):   You may enter a privacy password below. This provides only mild security, but should prevent others from messing with your subscription. Do not use a valuable password as it will occasionally be emailed back to you in cleartext. If you choose not to enter a password, one will be automatically generated for you, and it will be sent to you once you've confirmed your subscription. You can always request a mail-back of your password when you edit your personal options. Once a month, your password will be emailed to you as a reminder. Pick a password:   Reenter password to confirm:   Which language do you prefer to display your messages? English (USA)   Would you like to receive list mail batched in a daily digest? No Yes
websec Subscribers
(The subscribers list is only available to the list members.) Enter your address and password to visit the subscribers list: Address: Password:    To unsubscribe from websec, get a password reminder, or change your subscription options enter your subscription email address: If you leave the field blank, you will be prompted for your email address