The European Union's computer security agency is warning that standards under development as part of HTML5 are undergoing rewrites that may neglect important security issues.
The European Network and Information Security Agency (ENISA) released on Monday a 61-page document analyzing HTML5, the latest specification for the Web's coding mother tongue.
HTML5 is curated by the World Wide Web Consortium (W3C). The organization is accepting comments on the latest draft of HTML5 until Tuesday, and ENISA finished its recommendations just a day ahead of the deadline.
"I think this is special in that it's the first time anyone has look at those suites of specifications together from a security point of view," said Giles Hogben, program manager for secure services at ENISA.
The HTML5 specifications are important, as application designers and Web developers will use them as a guide for years to come. The HTML4 specifications, for example, have been in use since 1999.
If the specifications for Web browsers are not up to snuff, it puts everyone from consumers to enterprise users at risk.
"Everybody is using a browser for everything these days," Hogben said. "It's really crucial."
No comments:
Post a Comment