W3C home > Mailing lists > Public > www-ws-arch@w3.org > June 2002

RE: proposed AC018 rewording

From: Joseph Hui <Joseph.Hui@exodus.net>
Date: Thu, 20 Jun 2002 11:22:31 -0700
Message-ID: <45258A4365C6B24A9832BFE224837D551D1C62@SJDCEX01.int.exodus.net>
To: "Mark Baker" <distobj@acm.org>
Cc: <www-ws-arch@w3.org>

> From: Mark Baker [mailto:distobj@acm.org]
> Sent: Thursday, June 20, 2002 9:36 AM
> To: kreger@us.ibm.com
> Cc: Joseph Hui; ECKERT,ZULAH (HP-Cupertino,ex1); Damodaran, Suresh;
> Hao.He@thomson.ocm.au; adiber@att.com; wsgeek2002@yahoo.com;
> www-ws-arch@w3.org
> Subject: Re: proposed AC018 rewording
> 
> Requiring security to be easily manageable may actually 
> reduce security,

Not necessarily, not if it's done right.

There's no trade-off between easy manageability and security.
E.g. some incredibly complex security systems are managed
by few button pushing rent-a-cops.

Joe Hui
Exodus, a Cable & Wireless service
===================================================

> so I'd personally like to see it in the management goal, not the
> security goal.
> 
> On Thu, Jun 20, 2002 at 11:57:49AM -0400, kreger@us.ibm.com wrote:
> > 
> > 
> > Joe,
> > I really think that the security management requirement 
> should stay with
> > the security goal.
> > I thought that was the net of the F2F, but it was hard for 
> me to know for
> > sure.
> 
> MB
> -- 
> Mark Baker, CTO, Idokorro Mobile (formerly Planetfred)
> Ottawa, Ontario, CANADA.               distobj@acm.org
> http://www.markbaker.ca        http://www.idokorro.com
> 
Received on Thursday, 20 June 2002 14:21:48 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 3 July 2007 12:25:00 GMT