W3C home > Mailing lists > Public > public-p3p-spec@w3.org > August 2003

P3P Beyond HTTP Task Force

From: <Patrick.Hung@csiro.au>
Date: Sat, 16 Aug 2003 02:57:59 +1000
Message-ID: <754324CDE8E4EE4498D8E0357D913685016015AD@saab-bt.act.cmis.CSIRO.AU>
To: public-p3p-spec@w3.org

Regarding to some previous discussion with Joseph and Hugo, we have
mentioned that:

"When XMLP messages are conveyed over HTTP the existing mechanisms defined
in the P3P1.0 specification may be used to associate policies with XMLP
messages. 
However, it is unclear to us whether the P3P specification supplies
sufficiently level 
of granularity to identify XMLP messages. If it does not, it is likely that
the P3P extension 
mechanism could be used to provide this granularity, but again this would
need to be 
documented. Furthermore, if other mechanisms are defines specifically for
use with XMLP, 
then conflicts may arise between these mechanisms and the P3P1.0-defined
mechanisms. 
The proper way to resolve these conflicts needs to be documented as well.

Besides documenting how a P3P policy should be associated with an XMLP
message, we 
believe it would be useful to offer some usage scenarios that include P3P.
We are concerned
that in the absence of discussion of privacy and P3P, developers will be
likely to ignore privacy 
issues when implementing the XML Protocol.

1. http://www.w3.org/TR/2002/WD-xmlp-reqs-20020626
2. http://lists.w3.org/Archives/Public/xmlp-comments/2002Jan/0022.html"

This may be one of the items that this task force want to propose for
inclusion in the 1.1 spec.
I will try to do more thoughts on it.
Received on Friday, 15 August 2003 12:58:03 EDT

This archive was generated by hypermail pre-2.1.9 : Wednesday, 17 March 2004 17:46:27 EST