IETF
websec@jabber.ietf.org
Tuesday, 31 July 2012< ^ >
stpeter has set the subject to: WebSec WG | http://tools.ietf.org/wg/websec/ audio at http://ietf83streaming.dnsalias.net/ietf/ietf833.m3u
Room Configuration

GMT+0
[15:26:50] hillbrad joins the room
[15:44:18] =JeffH joins the room
[15:52:15] <hillbrad> hrm.. audio not working
[15:52:44] <=JeffH> is it only webex or is there a separate stream ?
[15:53:55] <hillbrad> leader has not joined webex yet
[15:54:08] <hillbrad> audio at: http://ietf84streaming.dnsalias.net/ietf/ietf842.m3u gives:
[15:55:05] <hillbrad> 404 after redirecting to http://nagasaki.bogus.com:8000/stream02
[15:55:23] stpeter joins the room
[15:55:45] <stpeter> hmm, http://ietf84streaming.dnsalias.net/ietf/ietf842.m3u doesn't load for me
[15:55:59] stpeter has set the subject to: WebSec WG | http://tools.ietf.org/wg/websec/ audio at http://ietf84streaming.dnsalias.net/ietf/ietf842.m3u
[16:00:22] <=JeffH> audio coming thru?
[16:01:59] <hillbrad> aha, audio now
[16:02:31] dyork joins the room
[16:02:52] <stpeter> hillbrad: ah yes, it's working
[16:03:06] m&m joins the room
[16:03:14] barryleiba joins the room
[16:03:18] stpeter waves to m&m
[16:03:22] Phillip Hallam-Baker joins the room
[16:03:23] m&m waves back
[16:03:24] Ryan Sleevi joins the room
[16:03:33] doug.otis joins the room
[16:03:43] <barryleiba> *barry waves to everyone
[16:03:58] Paul Hoffman joins the room
[16:04:34] Satoru Kanno joins the room
[16:04:49] Dominik Elsbroek joins the room
[16:05:35] <Paul Hoffman> I am the jabber relay person. I'll try to keep watching here. Bug me if I miss you.
[16:06:03] kazubu joins the room
[16:06:21] <Paul Hoffman> I'm assuming y'all can hear, so I'm not "scribing" to Jabber, just from. Lemme know if that doesn't work for you.
[16:07:30] <stpeter> interesting suggestion about just getting rid of sniffing :)
[16:08:23] <=JeffH> to be clear, Larry Masinter is suggesting that if one has a http2, one can declare in that context "thou must not sniff"
[16:08:24] josephyee joins the room
[16:09:48] <stpeter> I assume that is PLH at the mic
[16:10:09] <=JeffH> it was
[16:10:18] <=JeffH> now PHillipe Le - H and Barry
[16:10:22] <=JeffH> but that is now over
[16:10:25] <stpeter> :)
[16:10:37] <stpeter> =JeffH: we might have an audio delay, not sure
[16:11:09] Hugo Salgado joins the room
[16:11:12] yngve_n_pettersen joins the room
[16:11:21] <stpeter> under https://datatracker.ietf.org/meeting/84/materials.html#wg-websec there are two links for Agenda, and the second one is for the PRECIS WG :)
[16:13:13] <stpeter> what's being shown on the screen?
[16:13:21] Melinda joins the room
[16:13:23] <Paul Hoffman> Ben Cambell's message to the mailing list
[16:13:29] <stpeter> the original one?
[16:13:30] <stpeter> OK
[16:13:34] <barryleiba> Actually, Jeff's reply.
[16:13:51] <Paul Hoffman> Too small to read from the back of the room with 55-year-old eyes
[16:14:14] <barryleiba> My 55-y-o eyes are closer to the screen.
[16:15:09] doug.otis leaves the room
[16:17:54] doug.otis joins the room
[16:17:54] Cheevarat joins the room
[16:19:03] gondrom@jabber.org joins the room
[16:22:44] Ted Hardie joins the room
[16:24:10] plehegar joins the room
[16:24:26] <barryleiba> Are you remoties able to follow this?
[16:24:32] <gondrom@jabber.org> Just FYI: This is Tobias Gondrom.
[16:24:42] <gondrom@jabber.org> Yes. Thank you, Barry.
[16:26:16] Gabriel Montenegro joins the room
[16:26:25] <stpeter> it will all be in the audio recording :)
[16:30:29] wilton@jabber.isoc.org joins the room
[16:43:29] mcmanus joins the room
[16:45:33] wilton@jabber.isoc.org leaves the room
[16:45:36] Cheevarat leaves the room
[16:48:34] <gondrom@jabber.org> Tobias: "deployment activation" sounds like the "report-only" feature you see at CSP (and which we also discussed for HSTS previously) where you can test first. Probably makes sense in the context of key pinning that you can shut yourself out.
[16:50:30] Dominik Elsbroek leaves the room
[16:50:48] stpeter recalls that we talked about this experimental mode in previous meetings, no?
[16:51:19] <Paul Hoffman> stp: you want me to say that at the mic?
[16:51:27] alexey.melnikov joins the room
[16:51:40] <gondrom@jabber.org> @Peter: yes. Correct. For key pinning it makes sense.
[16:53:01] <stpeter> Paul Hoffman: no
[16:53:24] <Paul Hoffman> Good, We already moved on.
[16:53:36] <stpeter> :)
[16:53:53] <stpeter> I'll preface with "MIC" if I would like something to be relayed
[16:54:38] josephyee leaves the room
[16:54:47] eburger joins the room
[16:56:07] <alexey.melnikov> Tobias: your turn
[16:56:26] <Paul Hoffman> Cover slide up
[16:56:34] <Paul Hoffman> Sorry: the cover slide is up
[16:56:51] <gondrom@jabber.org> I am on skype
[16:56:53] <eburger> You mean you don't want me to put my body in front of the slide :-)
[16:56:55] <Paul Hoffman> Hello
[16:56:57] sftcd joins the room
[16:57:17] <Paul Hoffman> We are hearing someone who sounds like Tobias
[16:57:50] <Paul Hoffman> Slide 2
[16:57:52] <Paul Hoffman> Slide 3
[16:58:44] <Paul Hoffman> Slide 4
[16:59:56] <Paul Hoffman> (I'll stop saying which slide we are on because you're hearing Yoav)
[17:00:32] jerrycwt joins the room
[17:00:45] jerrycwt leaves the room
[17:00:49] doug.otis leaves the room
[17:01:58] Paul Hoffman leaves the room
[17:03:52] <=JeffH> "web origin concept" is now RFC
[17:03:57] Paul Hoffman joins the room
[17:04:16] <=JeffH> rfc6454
[17:07:38] sftcd leaves the room
[17:08:12] <hillbrad> key pinning is about transport, CSP is about "content" - DOM, user interface, etc.
[17:08:23] <hillbrad> in the user agent
[17:08:28] sftcd joins the room
[17:09:44] <gondrom@jabber.org> Tobias: I have some latency in answering due to Audio delays.
[17:09:49] <hillbrad> I think my and JeffH's slides are relevant to discussion immediately.
[17:10:40] <hillbrad> But re:question on what to put into CSP, I would say that CSP handles client-side web application behavior and explicitly not transport layer concerns.
[17:11:17] <hillbrad> can someone voice me?
[17:11:41] <Paul Hoffman> I can
[17:11:46] <Paul Hoffman> What you you want me to say?
[17:12:45] <hillbrad> will follow up after our slides...
[17:13:15] <Paul Hoffman> Be ready to type fast. The WG meeting ends in 8 minutes, and I suspect Jeff will run out the time.
[17:13:31] <hillbrad> when the time comes:
[17:15:19] doug.otis joins the room
[17:15:20] <hillbrad> the scope of CSP is clear: it is for "Content", that is, policies for how a web user agent manages application instances in terms of the DOM, user interactions, etc. It is not for transport layer concerns. So key pinning, as suggested, is out of scope. But I believe that XFO is not a transport layer problem - it is a user interface level issue with web application instances.
[17:21:08] <hillbrad> yes
[17:21:13] <gondrom@jabber.org> Please note there is no problem with Migration from XFO to Fo is trivial and clear.
[17:21:39] barryleiba leaves the room
[17:22:02] <doug.otis> Does the FO ignore SVG objects or is that included?
[17:22:09] Paul Hoffman leaves the room
[17:22:13] sftcd leaves the room
[17:22:16] Phillip Hallam-Baker leaves the room
[17:22:20] Ryan Sleevi leaves the room
[17:22:46] eburger leaves the room
[17:22:50] doug.otis leaves the room
[17:23:02] <gondrom@jabber.org> thank you.
[17:23:08] kazubu leaves the room
[17:23:24] Ted Hardie leaves the room
[17:23:31] dyork leaves the room
[17:23:38] Satoru Kanno leaves the room
[17:23:38] alexey.melnikov leaves the room
[17:23:39] yngve_n_pettersen leaves the room
[17:23:50] stpeter leaves the room
[17:25:44] gondrom@jabber.org leaves the room
[17:26:38] mcmanus leaves the room
[17:27:53] Satoru Kanno joins the room
[17:28:02] =JeffH leaves the room: Logged out
[17:28:13] Satoru Kanno leaves the room
[17:29:14] Phillip Hallam-Baker joins the room
[17:29:25] hillbrad leaves the room
[17:30:31] Paul Hoffman joins the room
[17:30:35] Paul Hoffman leaves the room
[17:30:52] plehegar_ joins the room
[17:31:08] plehegar leaves the room
[17:31:32] m&m leaves the room
[17:32:18] Dominik Elsbroek joins the room
[17:33:18] Melinda leaves the room
[17:36:43] kazubu joins the room
[17:36:48] kazubu leaves the room
[17:38:44] Gabriel Montenegro leaves the room
[17:39:51] Dominik Elsbroek leaves the room
[17:41:10] doug.otis joins the room
[17:41:58] =JeffH joins the room
[17:42:02] =JeffH leaves the room
[17:42:04] doug.otis leaves the room
[17:47:36] plehegar_ leaves the room
[17:52:44] mcmanus joins the room
[17:54:30] mcmanus leaves the room
[18:30:16] Phillip Hallam-Baker leaves the room
[18:47:29] Phillip Hallam-Baker joins the room
[18:56:56] Ted Hardie joins the room
[19:09:32] Ted Hardie leaves the room
[19:48:00] Phillip Hallam-Baker leaves the room
[19:55:01] Ted Hardie joins the room
[19:55:05] Ted Hardie leaves the room
[19:58:16] Phillip Hallam-Baker joins the room
[20:00:59] Phillip Hallam-Baker leaves the room
[20:03:19] Phillip Hallam-Baker joins the room
[20:04:00] plehegar joins the room
[20:05:31] plehegar leaves the room
[20:26:34] Phillip Hallam-Baker leaves the room
Powered by ejabberd Powered by Erlang Valid XHTML 1.0 Transitional Valid CSS!