Fyi wrt origin-wide policies: "The Need for a Coherent Web Security Policy Framework"


#1

Just posting this here as it may (or may not) provide some relevant background and requirements wrt the origin-wide policies discussions…

Hodges and Steingruebl, “The Need for a Coherent Web Security Policy Framework”, W2SP position paper, 2010. http://w2spconf.com/2010/papers/p11.pdf

HTH,

=JeffH