External resources should be loaded securely, for example over HTTPS. Otherwise, threats would also include any network attacker when the book is being read (even separate from whether the book contents itself were securely transferred). This is currently a non-normative recommendation, but seems like a good candidate for a normative recommendation.

Network attackers are not currently described in the threat model of either the core or rs specs.