Oh Boy! I can hardly wait! A well defined security policy document that will doubtlessly be implemented just as flawlessly as the previous html and css standards.

</sarcasm>

Seriously, I am not giving a hard time to the poor folks at W3C, as much as to the implementations. The W3C standards are VERY complicated, but the implementation from the larger vendors (Micro$oft, I am looking at you) were lackluster for a LONG time. I don't expect any better for the security policy framework, but with potentially much more serious ramifications

W3C Policy Document