New Public Review Issue: Proposed Update UTR #36 Unicode Security Considerations

From: Rick McGowan (
Date: Tue Oct 30 2007 - 13:45:23 CST

  • Next message: John H. Jenkins: "Re: Level of Unicode support required for various languages"

    The Unicode Technical Committee has posted a new issue for public review
    and comment. Details are on the following web page:


    Review periods for the new item closes on January 28, 2008.

    Please see the page for links to discussion and relevant documents.
    Briefly, the new issue is:

    115 Proposed Update to UTR #36 Unicode Security Considerations

    Changes in this proposed update include:
    * Added explanation of UTF-8 over consumption attack in
            3.1 UTF-8 Exploits
    * Added subsection of 2.8.2 Mapping and Prohibition describing
            the Unicode 5.1 changes in identifiers
    * Added section 3.4 Property and Character Stability

    If you have comments for official UTC consideration, please post them by
    submitting your comments through our feedback & reporting page:

    If you wish to discuss issues on the Unicode mail list, then please use
    the following link to subscribe (if necessary). Please be aware that
    discussion comments on the Unicode mail list are not automatically recorded
    as input to the UTC. You must use the reporting link above to generate
    comments for UTC consideration.

            Rick McGowan
            Unicode, Inc.

    This archive was generated by hypermail 2.1.5 : Tue Oct 30 2007 - 13:47:52 CST