You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
226 lines
13 KiB
226 lines
13 KiB
<!--?xml version="1.0" encoding="utf-8"?-->
|
|
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html
|
|
lang="en-US"
|
|
xml:lang="en-US"
|
|
xmlns="http://www.w3.org/1999/xhtml">
|
|
<head>
|
|
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type" />
|
|
<title>Security Activity Statement</title>
|
|
<link type="text/css" rel="stylesheet" href="../StyleSheets/base.css" />
|
|
<link type="text/css" rel="stylesheet" href="../StyleSheets/activities.css" />
|
|
</head>
|
|
<body>
|
|
<!-- ids Navigate, Footer and below, and table id Structure are generated dynamically. Please contact the Comm Team at w3t-comm@w3.org for changes. -->
|
|
<div id="Icons">
|
|
<div class="whiteout">
|
|
<a href="#Contents">Skip to contents</a> |</div>
|
|
<a href="/"><img width="72" height="48" src="http://www.w3.org/Icons/w3c_home"
|
|
alt="W3C" />
|
|
</a> <a href="http://www.w3.org/TandS/"><img width="212" height="49"
|
|
alt="Technology and Society Domain"
|
|
src="http://www.w3.org/Icons/tands.gif" />
|
|
</a> <span class="whiteout">|</span> <span class="trail"><a href="../Security/">Security
|
|
home</a></span></div>
|
|
<ul id="Navigate">
|
|
<li><a href="/">W3C Home</a>
|
|
<ul class="nav">
|
|
<li><a href="/Consortium/">About W3C</a>
|
|
<ul class="nav">
|
|
<li><a href="/Consortium/activities">W3C Activities</a>
|
|
<ul class="nav">
|
|
<li class="boldblack"> Activity Statements
|
|
<ul class="nav">
|
|
<li><a title="Extensible Markup Language (XML) Activity Statement"
|
|
href="http://www.w3.org/XML/Activity.html">Extensible
|
|
Markup Language (XML)</a></li>
|
|
<li><a title="Fonts Activity Statement" href="http://www.w3.org/Fonts/Activity.html">Fonts</a></li>
|
|
<li><a title="Graphics Activity Statement" href="http://www.w3.org/Graphics/Activity.html">Graphics</a></li>
|
|
<li><a title="HTML Activity Statement" href="http://www.w3.org/MarkUp/Activity.html">HTML</a></li>
|
|
<li><a title="Incubator Activity Statement" href="http://www.w3.org/2005/Incubator/Activity.html">Incubator</a></li>
|
|
<li><a title="Internationalization Activity Statement"
|
|
href="http://www.w3.org/International/Activity.html">Internationalization</a></li>
|
|
<li><a title="Math Activity Statement" href="http://www.w3.org/Math/Activity.html">Math</a></li>
|
|
<li><a title="Mobile Web Initiative Activity Statement"
|
|
href="http://www.w3.org/2005/MWI/Activity.html">Mobile
|
|
Web Initiative</a></li>
|
|
<li><a title="Multimodal Interaction Activity Statement"
|
|
href="http://www.w3.org/2002/mmi/Activity.html">Multimodal
|
|
Interaction</a></li>
|
|
<li><a title="Patent Policy Activity Statement" href="http://www.w3.org/2004/pp/Activity.html">Patent
|
|
Policy</a></li>
|
|
<li><a title="Privacy Activity Statement" href="http://www.w3.org/Privacy/Activity.html">Privacy</a></li>
|
|
<li><a title="Rich Web Client Activity Statement"
|
|
href="http://www.w3.org/2006/rwc/Activity.html">Rich
|
|
Web Client</a></li>
|
|
<li class="navcurrent">Security</li>
|
|
<li><a title="Semantic Web Activity Statement" href="http://www.w3.org/2001/sw/Activity.html">Semantic
|
|
Web</a></li>
|
|
<li><a title="Style Activity Statement" href="http://www.w3.org/Style/Activity.html">Style</a></li>
|
|
<li><a title="Synchronized Multimedia Activity Statement"
|
|
href="http://www.w3.org/AudioVideo/Activity.html">Synchronized
|
|
Multimedia</a></li>
|
|
<li><a title="Ubiquitous Web Applications Activity Statement"
|
|
href="http://www.w3.org/2007/uwa/Activity.html">Ubiquitous
|
|
Web Applications</a></li>
|
|
<li><a title="Video in the Web Activity Statement"
|
|
href="http://www.w3.org/2008/WebVideo/Activity.html">Video
|
|
in the Web</a></li>
|
|
<li><a title="Voice Browser Activity Statement" href="http://www.w3.org/Voice/Activity.html">Voice
|
|
Browser</a></li>
|
|
<li><a title="WAI International Program Office Activity Statement"
|
|
href="http://www.w3.org/WAI/IPO/Activity.html">WAI
|
|
International Program Office</a></li>
|
|
<li><a title="WAI Technical Activity Statement" href="http://www.w3.org/WAI/Technical/Activity.html">WAI
|
|
Technical</a></li>
|
|
<li><a title="Web Services Activity Statement" href="http://www.w3.org/2002/ws/Activity.html">Web
|
|
Services</a></li>
|
|
<li><a title="Web and TV Activity Statement" href="http://www.w3.org/2011/webtv/Activity.html">Web
|
|
and TV</a></li>
|
|
<li><a title="XForms Activity Statement" href="http://www.w3.org/2002/Forms/Activity.html">XForms</a></li>
|
|
<li><a title="eGovernment Activity Statement" href="http://www.w3.org/egov/Activity.html">eGovernment</a></li>
|
|
</ul>
|
|
</li>
|
|
</ul>
|
|
</li>
|
|
</ul>
|
|
</li>
|
|
</ul>
|
|
</li>
|
|
</ul>
|
|
<div id="Contents">
|
|
<h1>Security Activity Statement</h1>
|
|
<p class="firstelement">The work in the W3C Security Activity
|
|
currently
|
|
comprises two Working Groups and one Interest Group: the <a href="../2008/xmlsec/">XML
|
|
Security Working
|
|
Group</a> focuses on maintaining and revising the XML Security
|
|
Specifications. The <a href="http://www.w3.org/2011/webappsec/">Web
|
|
Application Security Working Group</a> has the mission to
|
|
develop security and policy mechanisms to improve the security
|
|
of Web Applications, and enable secure cross-site
|
|
communication. The Web Security Interest Group serves as a
|
|
forum for discussion about improving standards and
|
|
implementations to advance the security of the Web.<br />
|
|
<br />
|
|
</p>
|
|
<p>The XML Security Working Group started up in summer 2008, and
|
|
has decided to publish an interim
|
|
set of 1.1 specifications as it works towards producing a more
|
|
radical change to XML Signature. The
|
|
<a href="../TR/xmldsig-core1/">XML Signature 1.1</a> and <a href="../TR/xmlenc-core1/">XML
|
|
Encryption
|
|
1.1</a> specifications clarify and enhance the previous
|
|
specifications without
|
|
introducing breaking changes, although they do introduce new
|
|
algorithms. These specifications are
|
|
at Candidate Recommendation stage, and are currently the subject
|
|
of discussion in a <a href="/2011/02/xmlsec-pag-charter.html">Patent
|
|
Advisory Group.</a></p>
|
|
<p>The Web Application Security Working Group and the Web Security
|
|
Interest Group were launched in early September 2011.</p>
|
|
<h2>Highlights Since the Previous Advisory Committee Meeting</h2>
|
|
<p>The following deliverables of the XML Security Working Group
|
|
are in Candidate Recommendation:</p>
|
|
<ul>
|
|
<li><a href="http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview.html">XML
|
|
Signature v1.1</a></li>
|
|
<li><a href="http://www.w3.org/2008/xmlsec/Drafts/xmlenc-core-11/Overview.html">XML
|
|
Encryption v1.1</a></li>
|
|
<li><a href="http://www.w3.org/2008/xmlsec/Drafts/xmldsig-properties/Overview.html">XML
|
|
Signature Properties</a></li>
|
|
<li><a href="http://www.w3.org/2008/xmlsec/Drafts/generic-hybrid-ciphers/Overview.html">XML
|
|
Security Generic Hybrid Ciphers</a></li>
|
|
</ul>
|
|
<p>The <a href="http://www.w3.org/2011/xmlsec-pag/">XML Security
|
|
PAG</a> is <a href="http://www.w3.org/2011/02/xmlsec-pag-charter.html">chartered</a>
|
|
to study issues and propose
|
|
solutions related to <a href="http://www.w3.org/TR/xmlenc-core1">XML
|
|
Encryption 1.1</a> and <a href="http://www.w3.org/TR/xmldsig-core1/">XML
|
|
Signature 1.1</a>.</p>
|
|
<p>The Advisory Committee reviewed a proposal to launch a Web
|
|
Application Security Working Group and a Web Security Interest
|
|
Group. Both proposals were approved by the Director in early
|
|
September 2011.<br />
|
|
</p>
|
|
<h2>Upcoming Activity Highlights</h2>
|
|
<p>The <a href="http://www.w3.org/2011/07/appsecwg-charter.html">Web
|
|
Application
|
|
Security Working Group</a> will have its face-to-face kick-off
|
|
meeting at the upcoming TPAC.</p>
|
|
<h2>Summary of Activity Structure</h2>
|
|
<!--THIS TABLE GENERATED From Member/Mail-->
|
|
<table summary="table of links to groups, Chairs, Team Contacts and charters for the Security Activity Activity"
|
|
id="Structure">
|
|
<thead>
|
|
<tr>
|
|
<th scope="col">Group</th>
|
|
<th scope="col">Chair</th>
|
|
<th scope="col">Team Contact</th>
|
|
<th scope="col">Charter</th>
|
|
</tr>
|
|
</thead>
|
|
<tbody>
|
|
<tr>
|
|
<th scope="row"><a href="http://www.w3.org/2008/xmlsec/">XML
|
|
Security Working Group</a><span class="partlink"><br />
|
|
(<a href="http://www.w3.org/2000/09/dbwg/details?group=42458"
|
|
title="Participants in the XML Security Working Group [Member-only link]">participants</a>)</span></th>
|
|
<td>Frederick Hirsch</td>
|
|
<td>Thomas Roessler</td>
|
|
<td><a href="http://www.w3.org/2008/02/xmlsec-charter">Chartered</a>
|
|
until 30 June 2012</td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><a href="http://www.w3.org/2011/webappsec/">Web
|
|
Application Security Working Group</a><span class="partlink"><br />
|
|
(<a href="http://www.w3.org/2000/09/dbwg/details?group=49309"
|
|
title="Participants in the Web Application Security Working Group [Member-only link]">participants</a>)</span></th>
|
|
<td>Brad Hill, Eric K. Rescorla</td>
|
|
<td>Thomas Roessler</td>
|
|
<td><a href="http://www.w3.org/2011/08/appsecwg-charter.html">Chartered</a>
|
|
until 31 March 2013</td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row"><a href="http://www.w3.org/Security/IG/">Web
|
|
Security Interest Group</a></th>
|
|
<td>Adam Barth</td>
|
|
<td>Thomas Roessler</td>
|
|
<td><a href="http://www.w3.org/2011/07/security-ig-charter.html">Chartered</a>
|
|
until 31 March 2013</td>
|
|
</tr>
|
|
</tbody>
|
|
</table>
|
|
<hr />
|
|
<p id="about-ac-mtg"><!--This paragraph will be updated automatically-->
|
|
This Activity Statement was prepared for <a href="http://www.w3.org/2011/11/TPAC/">TPAC
|
|
2011</a> per <a href="/Consortium/Process/activities#Activities">section
|
|
5</a> of the <a href="/Consortium/Process/">W3C Process
|
|
Document</a>. <a href="/2005/04/activity/processActivityStatements.xsl">Generated</a>
|
|
from <a href="http://www.w3.org/2000/04/mem-news/public-groups.rdf">group
|
|
data</a>. </p>
|
|
<address> <a href="mailto:tlr@w3.org">Thomas Roessler</a>,
|
|
Security Activity Lead </address>
|
|
<p id="Footer"><a rel="Copyright" href="/Consortium/Legal/ipr-notice#Copyright">Copyright</a>
|
|
© 2011 <a href="/"><abbr title="World Wide Web Consortium">W3C</abbr></a><sup>®</sup>
|
|
(<a href="http://www.csail.mit.edu/"><abbr title="Massachusetts Institute of Technology">MIT</abbr></a>,
|
|
<a href="http://www.ercim.org/"><acronym title="European Research Consortium for Informatics and Mathematics">ERCIM</acronym></a>,
|
|
<a href="http://www.keio.ac.jp/">Keio</a>), All Rights Reserved.
|
|
W3C <a href="/Consortium/Legal/ipr-notice#Legal_Disclaimer">liability</a>,
|
|
<a href="/Consortium/Legal/ipr-notice#W3C_Trademarks">trademark</a>,
|
|
<a rel="Copyright" href="/Consortium/Legal/copyright-documents">document
|
|
use</a> and <a rel="Copyright" href="/Consortium/Legal/copyright-software">software
|
|
|
|
licensing</a> rules apply. Your interactions with this site
|
|
are in accordance with our <a href="/Consortium/Legal/privacy-statement#Public">public</a>
|
|
and <a href="/Consortium/Legal/privacy-statement#Members">Member</a>
|
|
privacy statements.</p>
|
|
<p id="Validate"><!-- keep -->
|
|
$Id: Activity.html,v 1.212 2011/10/03 13:42:31 roessler Exp $<!-- /keep -->
|
|
<br />
|
|
<a href="http://validator.w3.org/"><img width="88" height="31" alt="Valid XHTML 1.0!"
|
|
src="/Icons/valid-xhtml10" />
|
|
</a></p>
|
|
</div>
|
|
</body>
|
|
</html>
|
|
|