-
Notifications
You must be signed in to change notification settings - Fork 62
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[ig/security] Put threat modeling in scope #552
Comments
Hi @jyasskin, thank you for your comment. So in general I feel the same way as you, that important topics like Threat Modeling is an important topic to be "chartered" and I have and we have made several thoughts with respect to CG or IG.
I hope I explained myself, let me know what you think about the reasoning :) |
quoting @jaromil from #550 (comment)
|
addressed here, we can follow up the discussion in the PR w3c/strategy#449 (comment) |
@simoneonofri noticed that we don't have a home at the W3C for general web threat modeling. He tried to address this by creating https://www.w3.org/community/tmcg/, but my personal sense is that this area is mature enough to fit into a chartered group. The horizontal review group for security will be enforcing a particular threat model, so it makes sense to give them the responsibility to write it down.
The text was updated successfully, but these errors were encountered: