> These security considerations are *excellent* and are fine as-is. I'd > suggest adding two additional items, but I don't insist on either of them: > (a) A note saying that the format provides neither privacy or integrity > protections internally, and if these are needed they have to be provided > externally. > (a) A mention of the private data block facility, noting that while it > can contain anything compliant implementations are required not to > interpret it. These seem to me sensible additions to round-out our security consideration coverage. JHReceived on Thursday, 6 December 2012 19:14:54 GMT
This archive was generated by hypermail 2.2.0+W3C-0.50 : Thursday, 6 December 2012 19:14:55 GMT