W3C home > Mailing lists > Public > public-wai-ert@w3.org > October 2006

Re: EARL security/privacy concerns

From: Johannes Koch <johannes.koch@fit.fraunhofer.de>
Date: Thu, 26 Oct 2006 09:42:46 +0200
Message-ID: <454066F6.8010200@fit.fraunhofer.de>
To: public-wai-ert@w3.org

Carlos Iglesias schrieb:
> However there is some information in the "HTTP Vocabulary in RDF" that is clearly sensitive. My first thoughts are for the "authorization" property which contains the userid and password, specially in "Basic Authentication" that relies just on a base64 encoded string.

Because it is the same in the HTTP protocol itself, I don't see the need 
for additionally encrypting it for EARL.
-- 
Johannes Koch - Competence Center BIKA
Fraunhofer Institute for Applied Information Technology (FIT.LIFE)
Schloss Birlinghoven, D-53757 Sankt Augustin, Germany
Phone: +49-2241-142628    Fax: +49-2241-142065
Received on Thursday, 26 October 2006 07:44:24 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 8 January 2008 14:18:27 GMT