Web Security Framework: Problem Statement and Requirements

Document Type Expired Internet-Draft (websec WG)
Last updated 2013-08-22 (latest revision 2013-02-18)
Stream IETF
Intended RFC status (None)
Expired & archived
plain text pdf html bibtex
Stream WG state WG Document
Document shepherd No shepherd assigned
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


Web-based malware and attacks are proliferating rapidly on the Internet. New web security mechanisms are also rapidly growing in number, although in an incoherent fashion. This document provides a brief overview of the present situation and the various seemingly piece-wise approaches being taken to mitigate the threats. It then provides an overview of requirements as presently being expressed by the community in various online and face-to-face discussions.


Jeff Hodges (Jeff.Hodges@PayPal.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)