A new IETF non-working group email list has been created. List address: oauth-security-reports@ietf.org Archive: https://mailarchive.ietf.org/arch/search/?email_list=oauth-security-reports To subscribe: https://www.ietf.org/mailman/listinfo/oauth-security-reports Purpose: This list was created to allow security researchers and other parties to submitting information related to discovered security vulnerabilities concerning the OAuth specifications and OAuth implementations. The aim is to provide those who discover security problems to have an easy way to report their findings to a small group of standardization experts, which includes the OAuth working group chairs, in a confidential manner. The group then has to decide on how to utilize the obtained information to initiate discussions on IETF mailing list or with impacted implementers. Important Note: Since vulnerability reports will be submitted to this list it is not a public mailing list. The OAuth WG chairs will invite experts to join this list. For additional information, please contact the list administrators.
