IETF Logo Mail Archive

[UPDATED] New Non-WG Mailing List: Oauth-security-reports -- Information about security vulnerabilities concerning the OAuth specifications and OAuth implementations

IETF Secretariat <ietf-secretariat@ietf.org> Tue, 12 January 2016 19:05 UTC

Return-Path: <ietf-secretariat@ietf.org>
X-Original-To: ietf-announce@ietf.org
Delivered-To: ietf-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 9EB5D1A7012; Tue, 12 Jan 2016 11:05:47 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: IETF Secretariat <ietf-secretariat@ietf.org>
To: IETF Announcement List <ietf-announce@ietf.org>
Subject: [UPDATED] New Non-WG Mailing List: Oauth-security-reports -- Information about security vulnerabilities concerning the OAuth specifications and OAuth implementations
X-Test-IDTracker: no
X-IETF-IDTracker: 6.11.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <20160112190547.14557.84624.idtracker@ietfa.amsl.com>
Date: Tue, 12 Jan 2016 11:05:47 -0800
Archived-At: <http://mailarchive.ietf.org/arch/msg/ietf-announce/mJCiBZnnd_XDTZQAoHRi0mzz7IU>
Cc: oauth-security-reports@ietf.org, derek@ihtfp.com
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.15
Reply-To: ietf@ietf.org
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-announce/>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Jan 2016 19:05:47 -0000

A new IETF non-working group email list has been created.

List address: oauth-security-reports@ietf.org
Archive: https://mailarchive.ietf.org/arch/search/?email_list=oauth-security-reports
To subscribe: https://www.ietf.org/mailman/listinfo/oauth-security-reports

Purpose:

This list was created to allow security researchers and other parties to submitting information related to discovered security vulnerabilities concerning the OAuth specifications and OAuth implementations. The aim is to provide those who discover security problems to have an easy way to report their findings to a small group of standardization experts, which includes the OAuth working group chairs, in a confidential manner. The group then has to decide on how to utilize the obtained information to initiate discussions on IETF mailing list or with impacted implementers.

Important Note: Since vulnerability reports will be submitted to this list it is not a public mailing list. The OAuth WG chairs will invite experts to join this list.

For additional information, please contact the list administrators.

v2.23.0 | Report a Bug | By Email