Hi, Jeff Hodges here.
Andy Steinguebl and I presented ths paper at the Web 2.0 Security and Privacy 2010 Workshop..
..back in May (abstract below). Since then, we’ve been waving our paper around and pursuing the action items outlined therein with some modest success, which we'll discuss as things develop.
Web-based malware and attacks are proliferating rapidly on the Internet. New web security mechanisms are also rapidly growing in number, although in an incoherent fashion. In this position paper, we give a brief overview of the ravaged web security landscape, and the various seemingly piece-wise approaches being taken to mitigate the threats. We then propose that with some cooperation, we can likely architect approaches that are more easily wielded and provide extensibility for the future. We provide thoughts on where and how to begin coordinating the work.