I just got this in a message from the WEBDAV group. It seems to be of
interest to our security discussions as well.
Carl-Uno
>To: IETF-Announce: ;
>Subject: RFC 2084 on Considerations for Web Transaction Security
>Cc: rfc-ed@isi.edu
>Mime-Version: 1.0
>Date: Wed, 22 Jan 97 12:13:27 PST
>Sender:ietf-announce-request@ietf.org
>From: RFC Editor <rfc-ed@isi.edu>
>
>
>A new Request for Comments is now available in online RFC libraries.
>
>
> RFC 2084:
>
> Title: Considerations for Web Transaction Security
> Author: G. Bossert, S. Cooper, W. Drummond
> Date: January 1997
> Mailbox: bossert@corp.sgi.com, sc@corp.sgi.com,
> drummond@ieee.org
> Pages: 6
> Characters: 9022
> Updates/Obsoletes: None
>
> URL: ftp://ds.internic.net/rfc/rfc2084.txt
>
>
>This document specifies the requirements for the provision of security
>services to the HyperText Transport Protocol. These services include
>confidentiality, integrity, user authentication, and authentication of
>servers/services, including proxied or gatewayed services. Such
>services may be provided as extensions to HTTP, or as an encapsulating
>security protocol. This document is a product of the Web Transaction
>Security Working Group of the IETF.
>
Carl-Uno Manros
Principal Engineer - Advanced Printing Standards - Xerox Corporation
701 S. Aviation Blvd., El Segundo, CA, M/S: ESAE-231
Phone +1-310-333 8273, Fax +1-310-333 5514
Email: manros@cp10.es.xerox.com