Re: [http-state] 'HTTP State Management Mechanism' to Proposed Standard

=JeffH <> Thu, 03 March 2011 18:19 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 664983A6A28 for <>; Thu, 3 Mar 2011 10:19:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -102.307
X-Spam-Status: No, score=-102.307 tagged_above=-999 required=5 tests=[AWL=-0.042, BAYES_00=-2.599, IP_NOT_FRIENDLY=0.334, USER_IN_WHITELIST=-100]
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id cWP-tQ0mqquS for <>; Thu, 3 Mar 2011 10:19:02 -0800 (PST)
Received: from ( []) by (Postfix) with SMTP id 46D633A69ED for <>; Thu, 3 Mar 2011 10:19:02 -0800 (PST)
Received: (qmail 8280 invoked by uid 0); 3 Mar 2011 18:20:10 -0000
Received: from unknown (HELO ( by with SMTP; 3 Mar 2011 18:20:09 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=default;; h=Received:Message-ID:Date:From:User-Agent:MIME-Version:To:CC:Subject:Content-Type:Content-Transfer-Encoding:X-Identified-User; b=eC4+8+qfAd2cyB1GNt+Jr67XMH5u5udma+4vJEwIh+XXnXn/RFAQ1TDz6vnBepkKu2GJtOxXwcEDWQc7GKaNjzeWUu7iKtKfc2uO1M25IsWcDHS0Kv0ZJXb18s/EdjHT;
Received: from ([] helo=[]) by with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.69) (envelope-from <>) id 1PvD8C-0007Rn-Kz; Thu, 03 Mar 2011 11:20:08 -0700
Message-ID: <>
Date: Thu, 03 Mar 2011 10:20:07 -0800
From: =JeffH <>
User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv: Gecko/20101208 Thunderbird/3.1.7
MIME-Version: 1.0
To: IETF HTTP State WG <>, Internet Architecture Board <>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Identified-User: {} {sentby:smtp auth authed with}
Cc: httpstate chair <>
Subject: Re: [http-state] 'HTTP State Management Mechanism' to Proposed Standard
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discuss HTTP State Management Mechanism <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Thu, 03 Mar 2011 18:19:03 -0000

This is great news!

 > Personnel
 >    The Document Shepherd is Jeff Hodges.  The Responsible Area
 >    Director is Peter Saint-Andre.

But the person who did the vast majority of the work, and who's idea it was to 
tackle this in the first place, is _Adam Barth_, who deserves an outsized chunk 
of the credit. Thanks for hanging in there and making this happen Adam. 
Additionally, Peter Saint-Andre's expert navigation of the IETF document and 
IESG processes was an instrumental contribution. Thanks Peter.

I also thank the broad array of participants in the working group, both online 
and in person at our sessions at IETF meetings -- your contributions were 
critical to crafting a high-quality spec and navigating the approval process. 

This spec is a milestone in that HTTP "cookie" syntax and behavior has been 
effectively a matter of undocumented folklore all these years. Getting this 
finally explicitly documented will be a key underlying piece of moving "the 
Web", and the wider Internet its built upon, on towards its next stage(s).

thanks again,

IETF HTTP State WG Chair
PayPal Information Risk Management