I was at WWW2008 last week in Beijing, where I presented a Tutorial on RDFa with Elias Torres and Ivan Herman, and SessionLock, a technique for securing web session used over unencrypted HTTP.

The conference was a lot of fun. Spent quite a bit of time discussing security with Collin Jackson and Tyler Close. The main topic of the day was, of course, cross-domain requests, and the conflict between the W3C specification and the recent out-of-the-blue Microsoft proposal. I have some thoughts, which I’ll post next.