recentpopularlog in

mcherm : standards   64

RFC 7282 - On Consensus and Humming in the IETF
An actual standard on how to come to consensus and what that means.
leadership  standards  via:HackerNews 
june 2019 by mcherm
OpenAPI Specification | Swagger
The specification for APIs (formerly swagger, now OpenAPI).
refs  standards  REST  APIDesign 
may 2019 by mcherm
FIDO2 Project - FIDO Alliance
An overall approach to web authentication. WehAuthn (part of it) was just approved as a W3C standard. I should read up on this and learn it.
security  programming  authentication  web  internet  standards  via:HackerNews 
march 2019 by mcherm
RFC 7231 - Hypertext Transfer Protocol (HTTP/1.1): Semantics and Content
Instead of telling people that certain HTTP methods are supposed to be idempotent, I should give out this link to the spec definitions of "safe" and "idempotent" which are clearly specified and explained.
standards  web  http  REST  reference  via:HackerNews 
february 2019 by mcherm
MPEG-G: the ugly
A data format standard for DNA sequences is marred by patents (dubious ones).
law  ip-law  patent  patentabuse  standards  via:HackerNews  science 
december 2018 by mcherm
Why TLS 1.3 isn't in browsers yet - A Problem with Standards
Many interesting points; my favorite is that they found that any value designed to be changeable in future versions (but not changing in practice) "rusts in place" as systems are introduced that depend on it not changing. So they tried a new protocol that puts random values in these places to prevent future issues!
standards  ssl  via:HackerNews 
november 2018 by mcherm
#SmooshGate FAQ  |  Web  |  Google Developers
Using "flatten" for a new javascript built-in function would have caused problems because one (old) library used that name. So they will rename the function as "flat".
standards  via:HackerNews 
may 2018 by mcherm
Exclusive: NSA encryption plan for ‘internet of things’ rejected by international body – WikiTribune
The US has pushed for certain encryption algorithms to become the new standard for internet of things. The international standards body rejected it because they suspect the NSA will attempt to insert back doors or breakable algorithms.
cryptography  security  standards  NSA  via:boingboing 
april 2018 by mcherm
How to Meet WCAG 2.0
The standard for web accessibility.
standards  accessibility 
april 2018 by mcherm
I Slipped on JavaScript's Banana Peel - Bocoup
Changed the JavaScript grammar definition to make it more readable and accidentally made it need >1 token of lookahead (which means some analysis tools stop working). Reverted.
javascript  standards  programming  via:reddit  languagedesign 
december 2017 by mcherm
Stealing sensitive browser data with the W3C Ambient Light Sensor API
If web pages can use the ambient light sensor without asking for permission then they can display cross-origin resources and figure out what they are by the light from the screen.
security  standards  via:HackerNews 
october 2017 by mcherm
Falling through the KRACKs – A Few Thoughts on Cryptographic Engineering
The WPA2 WiFi protocol was written years ago and was written years ago and was"proved" secure, yet a flaw was just found. Why? Blame IEEE for making the standards hard to access and poorly written; and the proof was done on two pieces in isolation instead of the whole system or better yet the actual code.
security  standards  IEEE  cryptography  via:HackerNews 
october 2017 by mcherm
Is Jigsaw good or is it wack? – Mike’s blog
Red Hat and IBM argue that the new modules proposal isn't good. This blogger thinks they're just caught up in their own unsuccessful implementations.
java  standards  via:HackerNews 
april 2017 by mcherm
Me and SVG by Amelia Bellamy-Royds on CodePen
How this journalist became heavily involved in SVG.
svg  standards  journalism 
april 2017 by mcherm
The Last AC-3 Patent Expired on March 20, 2017
Dolby had a patent on the standard for audio in digital television which has been in place since 1992. They used various methods to extend that patent control.
patent  patentabuse  standards  law  ip-law  via:HackerNews 
march 2017 by mcherm
JWT (JSON Web Tokens) is a Bad Standard That Everyone Should Avoid - Paragon Initiative Enterprises Blog
Points out that a client can request the "none" encryption algorithm. Wait, what? Why can the client request anything? If libraries are accepting "none" and other broken encryption schemes, then THAT is the bug.
JavascriptWebTokens  security  cryptography  standards  via:HackerNews 
march 2017 by mcherm
Introducing Deliberate Protocol Errors: Langley’s Law | Hacking for Christ
Similar to chaos monkey, Google apparently is testing their protocol by introducing a small portion of malicious requests into the system to ensure that clients write the code defensively.
via:reddit  google  standards  chaosmonkey 
september 2016 by mcherm
NIST’s new password rules – what you need to know – Naked Security
An actual STANDARD on how to handle passwords. START SHOWING THIS TO PEOPLE. I'm linking to the article, not the standard, because it gives such a nice summary.
passwords  security  standards  via:reddit 
august 2016 by mcherm
https://www.ietf.org/rfc/rfc3339.txt
The standard time format. THIS IS THE ONE I SHOULD ACTUALLY USE AS A REFERENCE!
time  programming  standards  via:reddit 
july 2016 by mcherm
Houdini: Maybe The Most Exciting Development In CSS You've Never Heard Of – Smashing Magazine
Instead of defining standards and then waiting for browsers to implement them, build Frame Works at can be extended programmatically like JavaScript.
css  standards  via:HackerNews 
march 2016 by mcherm
The HTTP 451 Error Code for Censorship Is Now an Internet Standard | Motherboard
Yes, there is now an OFFICIAL http error code for use when you have been legally required to censor some material.
http  standards  censorship  internet  via:boingboing 
december 2015 by mcherm
Base 64 without padding
Burried in another RFC is how to use base64 without padding.
standards  cryptography  base64 
september 2015 by mcherm
We're heading Straight for AOL 2.0 · Jacques Mattheij
They don't make standard anymore everything is done in a proprietary fashion layered on top of HTTP and JavaScript.
internet  standards  via:HackerNews 
august 2015 by mcherm
"The Tussle": Why HTTP/2 Does Not Require Encryption
It's actually an insightful comment on the role that standards can and should play.
standards  security  via:reddit  http 
february 2015 by mcherm
RFC 20 elevated to STD 80 after 45 years : programming
ASCII over TCPIP is now elevated to a standard. And some comments on the reason so few things are.
standards  rfc  via:reddit 
january 2015 by mcherm
How a new HTML element will make the Web faster | Ars Technica
The story behind how a new HTML element got added to the standard to support varying image sizes. It is really a story about how standards committees work.
ArsTechnica  standards  html  html5  webdevelopment  web  via:HackerNews 
september 2014 by mcherm
RFC 3092: Etymology of "Foo" | Hacker News
There's an RFC that defines "foo" and "bar". I object that it is useless.
mypostings  standards  via:HackerNews 
may 2014 by mcherm
[Cryptography] Opening Discussion: Speculation on "BULLRUN"
What is it like when the NSA is undermining your standards committee.
nsa  via:boingboing  standards  security 
september 2013 by mcherm
Why the Opus Codec Matters - Even if You Don't Care About Audio
A new audio codec that is apparently really good for transmitting audio over an IP network and at the same time is free to use.
standards  audio  via:reddit 
july 2013 by mcherm
Two HTML Standards Diverge in a Wood | Webmonkey | Wired.com
There are now two standards for HTML, but that doesn't suck.
standards  html  internet  via:HackerNews 
july 2012 by mcherm
OAuth 2.0 and the Road to Hell « hueniverse
A major author of the OAuth2 standard quits, saying it is a failure.
security  oauth  internet  ietf  via:HackerNews  standards 
july 2012 by mcherm
mjg59 | TVs are all awful
TV scaling is a mess. For historical reasons, and just plain bad standards.
standards  tv  via:HackerNews 
january 2012 by mcherm
ISO C is increasingly moronic | Hacker News
A discussion of how backward compatibility is useful. Or maybe not. I chime in, but perhaps others have more insight.
programming  standards  mypostings 
december 2011 by mcherm
HTML5 video and H.264 – what history tells us and why we’re standing with the web · Christopher Blizzard
YouTube is now using HTML5 but with a proprietary format for the video. Firefox won't display it because it's a proprietary format. Learn from history (like GIF): use an open format!
patent  ip-law  firefox  google  opensource  youtube  standards  video  w3c  GIF  via:reddit 
january 2010 by mcherm
The State and Future of JavaScript (YUI Theater)
Douglas Crockford presentation (video and transcript) on the design of JavaScript version 5.
languagedesign  DouglasCrockford  javascript  programming  standards 
december 2009 by mcherm
Talking to DC « Adam Bosworth’s Weblog
Some suggestions on how to write technical standards, from someone who seems to be a world-class expert in the subject.
standards  via:JoelSpolsky 
november 2009 by mcherm
Why do we have an IMG element? [dive into mark]
History of how the img tag got added to HTML. Interesting story, also neat to see the give and take of standards development. The guy who shipped working code won.
html  history  browsers  via:HackerNews  standards 
november 2009 by mcherm
English System
The english system of measurement, specified.
science  standards  via:HackerNews  funny 
september 2009 by mcherm
public-soap-jms@w3.org from April 2009: by date
My comment on a W3C draft where I found a (tiny) error.
standards  mypostings 
april 2009 by mcherm
RFC-2119 - definitions of SHALL, MAY, and so forth
The definition of the words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" as used in RFCs.
language  writing  specification  standards 
april 2009 by mcherm
Dive into history, 2009 edition [dive into mark]
Reasons why you should write your documentation in HTML rather than some other markup language.
standards  documentation  html  via:MarkPilgrim 
april 2009 by mcherm
The longdesc lottery » The WHATWG Blog
The longdesc attribute in HTML is required for accessibility reasons, but it simply isn't working. Not one in 100,000 is even *potentially* useful. And blind users don't even know about it. Perhaps this isn't actually a useful solution.
webdevelopment  webdesign  accessibility  handicaps  html  standards  research 
april 2009 by mcherm
Stephen Colebourne's Weblog
Criticism of Sun for not allowing open source groups (like Apache) to use the test suite, thus not allowing them to say they're standard.
sun  java  opensource  via:HackerNews  personal_net  standards  apache 
march 2009 by mcherm
Coding Horror: HTML Validation: Does It Matter?
Argues that there's little benefit to conforming strictly to valid html, and NO benefit to standard xhtml.
via:CodingHorror  codinghorror  webdevelopment  webdesign  standards  html 
march 2009 by mcherm
drplokta: Imminent Death of the Net Predicted
Coherent explanation of how Vista causes a problem by following the standards for DNS resolution.
internet  networking  vista  standards 
march 2009 by mcherm
CSS - Quirks mode and strict mode
Essential documentation on "quirks mode" and "strict mode" and how to control them in browser page rendering.
webdesign  webdevelopment  html  ie  firefox  standards  refs 
january 2009 by mcherm
WebAIM: Blog - History of the browser user-agent string
The history of the browser user-agent string: how everyone pretended to be everyone else until it was nothing but a big mess.
funny  webdevelopment  webdesign  browsers  history  standards  via:CSSTricks 
october 2008 by mcherm
GMU sued for Zotero — Crooked Timber
Academic writes a Firefox plugin to keep notes on academic articles. It is capable of converting files from the format used by Reuters' product to an open format. They sue.
via:boingboing  law  ip-law  copyright  censorship  standards 
october 2008 by mcherm
IBM threatens to leave standards bodies - NYTimes.com
IBM, upset about Microsoft's ramming the MS Office format through a standards body, has now set up standards they expect standards bodies to adhere to. Good idea, and Good Luck (you'll need it).
via:slashdot  standards  IBM 
september 2008 by mcherm
The “myth” of free standards « Jon Udell
A (small, only partly convincing) argument in favor of CLOSED standards, rather than free open standards.
via:JonUdell  JonUdell  standards  opensource 
september 2008 by mcherm
When the fall is all that’s left [dive into mark]
The Acid3 test was released, it highlighted bugs in all 4 browsers, Opera and Apple had a race to fix them first. The Firefox team just griped. It's like a review: it's not about what score you get, it's about the conversation you have afterward.
MarkPilgrim  diveintomark  standards  firefox  opera  apple  webdesign  rant  browsers  webstandards  mozilla  acid 
may 2008 by mcherm
The Norway Vote - What really happened « Topic Maps and All That
Here is a tale of a possible problem with consensus. When the group is not unanimous a smaller group is used. Repeat until a SINGLE PERSON makes the decision. The technical experts are ignored and the decision is fully political.
via:slashdot  standards  ooxml  consensus  Microsoft  evil 
april 2008 by mcherm
An Antic Disposition: How many defects remain in OOXML?
An analysis of the proposed standardization of of Microsoft's document format. We've known the standard is too long to be usable; this attempts to sample it for errors to predict the number of errors and finds HUGE error rates.
Microsoft  standards 
march 2008 by mcherm
Google's Engineering Philosophy
Google's practices: collective code ownership, reviews required for all checkins. Pervasive continuous testing, alerts on failures. Flat org structure, lots of transparency.
programming  google  development  standards  methodology  agile  build 
march 2008 by mcherm
Thought experiment
Why the clients shouldn't enforce standards (at least on the web). See also Postel's Law.
webdevelopment  browsers  standards 
february 2008 by mcherm
Hixie's Natural Log: Mistakes, Sadness, Regret
Microsoft isn't TRYING to be evil, but their support of backward compatibility over standards in IE causes problems.
Microsoft  ie  webdev  webdevelopment  webdesign  standards  webstandards  html  blogentry 
january 2008 by mcherm
HTML V5 and XHTML V2
Some discussion of the competing future web standards.
webdevelopment  webdesign  standards  programming 
december 2007 by mcherm

Copy this bookmark:





to read