[websec] Requiring OCSP Stapling as a directive in HSTS[websec] Requiring OCSP Stapling as a directive in HSTS
Tom Ritter
2015-01-19
websec
/arch/msg/websec/FfsLW9QmvgSzCF0DoP6gIbkotm8/
1877609
1664985
Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?
Igor Bukanov
2015-01-15
websec
/arch/msg/websec/iQSxl7CoAhpwAI5e4gPXPwIuTX8/
1875787
1664987
Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?
Chris Hartmann
2015-01-14
websec
/arch/msg/websec/JgBUW8rS73eCSJuOEh5kSeYxJT0/
1875462
1664987
Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?
Tobias Gondrom
2015-01-14
websec
/arch/msg/websec/874WDLRFmM_g3ADiurnkHqeUvQM/
1875040
1664987
Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?
Anne van Kesteren
2015-01-14
websec
/arch/msg/websec/3jUmIlhF_Zw09fqKNC4YxGGGVtE/
1874981
1664987
Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?
Jeffrey Walton
2015-01-14
websec
/arch/msg/websec/5L1LhgqWJbj-GFkmZ8Q960NmXHk/
1874824
1664987
Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?
Chris Hartmann
2015-01-13
websec
/arch/msg/websec/aiybhTjFdHnS9heM3Kogib-MkKM/
1874699
1664987
Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?
Chris Hartmann
2015-01-13
websec
/arch/msg/websec/JAaVsWLqLnEVI99hWkwCqpJcPKs/
1874651
1664987
[websec] test pls ignore[websec] test pls ignore
=JeffH
2015-01-13
websec
/arch/msg/websec/nsvJr-ILHRTduDmEgM0U5octras/
1874581
1664986
Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?
Gervase Markham
2015-01-13
websec
/arch/msg/websec/uBnys1Jtb-w-xyesG5aBjGnCjC8/
1874366
1664987
Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?Re: [websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?
Anne van Kesteren
2015-01-13
websec
/arch/msg/websec/MrGzs_tcz8gyk3LsW1l_iB-DMus/
1874337
1664987
[websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?[websec] Authentic inter-domain relationships. Is this a security problem? Appropriate for websec?
Chris Hartmann
2015-01-12
websec
/arch/msg/websec/LFj1Oc0WmPBJnYw-QTUw-lqifs0/
1874008
1664987
Re: [websec] Sites with Key Pinning Headers (not preloaded pins)Re: [websec] Sites with Key Pinning Headers (not preloaded pins)
Pawel Krawczyk
2015-01-08
websec
/arch/msg/websec/wb-EJxpPcz-ssruzbeUUb00zUBY/
1872202
1664988
Re: [websec] Sites with Key Pinning Headers (not preloaded pins)Re: [websec] Sites with Key Pinning Headers (not preloaded pins)
Joseph Bonneau
2015-01-08
websec
/arch/msg/websec/RSj6-XB86id_VgNM9tx25NTEY8Y/
1872161
1664988
[websec] Sites with Key Pinning Headers (not preloaded pins)[websec] Sites with Key Pinning Headers (not preloaded pins)
Martin J. Dürst
2015-01-08
websec
/arch/msg/websec/60o9v3dU0N1EGeBDn_QeoKStdxg/
1872049
1664988
Re: [websec] Comments on draft-ietf-websec-key-pinningRe: [websec] Comments on draft-ietf-websec-key-pinning
Ryan Sleevi
2015-01-02
websec
/arch/msg/websec/AH1k1q2gYBQfEtJdTBOxkGeg3uE/
1869171
1664988
Re: [websec] Comments on draft-ietf-websec-key-pinningRe: [websec] Comments on draft-ietf-websec-key-pinning
Yoav Nir
2015-01-02
websec
/arch/msg/websec/s6dkqfdxbZsDn_K7At_juWTeKFQ/
1868955
1664988
[websec] Comments on draft-ietf-websec-key-pinning[websec] Comments on draft-ietf-websec-key-pinning
Jeffrey Walton
2015-01-02
websec
/arch/msg/websec/WxnLpkFlAdT58L51fmWUtikUSDY/
1868926
1664988
Re: [websec] [HSTS] Contradiction between sections 8.1 and 11.3 of RFC 6797?Re: [websec] [HSTS] Contradiction between sections 8.1 and 11.3 of RFC 6797?
Daniel Kahn Gillmor
2014-12-30
websec
/arch/msg/websec/BlNiaAU3ccm_kQa30KmDCnp2DbA/
1868217
1664989
Re: [websec] [HSTS] Contradiction between sections 8.1 and 11.3 of RFC 6797?Re: [websec] [HSTS] Contradiction between sections 8.1 and 11.3 of RFC 6797?
Stephane Bortzmeyer
2014-12-17
websec
/arch/msg/websec/W6HZHof4QP3a2yE5PdqvgsfrjWc/
1866888
1664989
Re: [websec] [HSTS] Contradiction between sections 8.1 and 11.3 of RFC 6797?Re: [websec] [HSTS] Contradiction between sections 8.1 and 11.3 of RFC 6797?
David Keeler
2014-12-17
websec
/arch/msg/websec/Bfp5GiBf6esFQ8TxFSM5rkZ6PPo/
1863724
1664989
[websec] [HSTS] Contradiction between sections 8.1 and 11.3 of RFC 6797?[websec] [HSTS] Contradiction between sections 8.1 and 11.3 of RFC 6797?
Stephane Bortzmeyer
2014-12-17
websec
/arch/msg/websec/2xzc5RlpZIpC90zdR0YCZezWS_o/
1863407
1664989
[websec] unbearable - new mailing list to discuss better than bearer tokens...[websec] unbearable - new mailing list to discuss better than bearer tokens...
Stephen Farrell
2014-12-05
websec
/arch/msg/websec/BluUg13PK39XvrRJ5Vfh_TO79-8/
1856297
1664990
Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?
Steingruebl, Andy
2014-11-11
websec
/arch/msg/websec/fi_ZXVhRH4pf_igXz75dGJOBiWs/
1840580
1664991
Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?
Yoav Nir
2014-11-10
websec
/arch/msg/websec/LUYqu-iMsxYUtzFjBXrIuyaCyrs/
1839209
1664991
Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?
Tobias Gondrom
2014-11-10
websec
/arch/msg/websec/7u6SWSHWBwBO7LOZW55ALWQTcuA/
1839170
1664991
Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?
Hodges, Jeff
2014-11-10
websec
/arch/msg/websec/0BGtGFZCpqOf6CBPFpWgqWKzB88/
1839069
1664991
Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?
Hodges, Jeff
2014-11-10
websec
/arch/msg/websec/1h7ktuC1NJK0So4KKMoMnPosiYY/
1839068
1664991
Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?
Tom Ritter
2014-11-08
websec
/arch/msg/websec/tPCgxo8TJDKDV8zj7AP2eewF6no/
1837696
1664991
Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?
Xiaoyin Liu
2014-11-07
websec
/arch/msg/websec/SKtaVjBVi2SJ7vqsYR_RohW-SNU/
1837559
1664991
Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?
Hanno Böck
2014-11-07
websec
/arch/msg/websec/iAaHuf3l-KSjgHppi4ItpovAoNM/
1837375
1664991
Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?Re: [websec] HSTS: Infinite max-age to address NTP spoofing attack?
Daniel Kahn Gillmor
2014-11-07
websec
/arch/msg/websec/PSPYKU87uZVGAhSx_OUsl6VveOI/
1837366
1664991
[websec] HSTS: Infinite max-age to address NTP spoofing attack?[websec] HSTS: Infinite max-age to address NTP spoofing attack?
Xiaoyin Liu
2014-11-07
websec
/arch/msg/websec/6jUTYElPw_TukEdyXyMho26h4Bo/
1837268
1664991
Re: [websec] HSTS at DNS levelRe: [websec] HSTS at DNS level
Anne van Kesteren
2014-10-30
websec
/arch/msg/websec/g5wBJrmXgXjG2tEZpFxyklVtjIg/
1833449
1664992
Re: [websec] HSTS at DNS levelRe: [websec] HSTS at DNS level
Yoav Nir
2014-10-30
websec
/arch/msg/websec/9i7nMXRd2dDQsOalNVerngf0LHE/
1832317
1664992
[websec] HSTS at DNS level[websec] HSTS at DNS level
Anne van Kesteren
2014-10-29
websec
/arch/msg/websec/QMZPeEZ0ManRH9kEpt3UY7NNrCc/
1832306
1664992
Re: [websec] Question on Pinning OverridesRe: [websec] Question on Pinning Overrides
Chris Palmer
2014-10-20
websec
/arch/msg/websec/GSR0quBHnKWdxJrPY_rqWQhUcDI/
1823459
1664994
Re: [websec] Question on Pinning OverridesRe: [websec] Question on Pinning Overrides
Jeffrey Walton
2014-10-19
websec
/arch/msg/websec/S4BJEfn1scF0l3E8bizWgUlMzJs/
1822621
1664994
Re: [websec] Protocol Action: 'Public Key Pinning Extension for HTTP' to Proposed Standard (draft-ietf-websec-key-pinning-21.txt)Re: [websec] Protocol Action: 'Public Key Pinning Extension for HTTP' to Proposed Standard (draft-ietf-websec-key-pinning-21.txt)
Hodges, Jeff
2014-10-17
websec
/arch/msg/websec/-pjzW_IF3TGJlnP4rw9D6FF2dWg/
1821386
1664995
[websec] wrt closing the websec WG (was: DISCUSS positions on draft-ietf-websec-key-pinning[websec] wrt closing the websec WG (was: DISCUSS positions on draft-ietf-websec-key-pinning
Hodges, Jeff
2014-10-17
websec
/arch/msg/websec/ANHqPKi82Q1-vdzcwzJ8rgc_Cz0/
1821385
1664993
40 Messages