W3C home > Mailing lists > Public > www-ws-arch@w3.org > May 2002

RE: D-AR006.7 - Key management

From: Joseph Hui <jhui@digisle.net>
Date: Thu, 2 May 2002 17:56:53 -0700
Message-ID: <C153D39717E5F444B81E7B85018A460B06685958@ex-sj-5.digisle.com>
To: "Ahmed, Zahid" <zahid.ahmed@commerceone.com>, <www-ws-arch@w3.org>
My response to Hugo on this also applies here.
I.e. the issue at hand for the WG is: in scope or out of scope.
Joe Hui
Exodus, a Cable & Wireless service

===================================

-----Original Message-----
From: Ahmed, Zahid [mailto:zahid.ahmed@commerceone.com]
Sent: Thursday, May 02, 2002 2:21 PM
To: www-ws-arch@w3.org
Subject: RE: D-AR006.7 - Key management



I think this working group does not need to define the 
requirements, mechanics, and policies of key management, 
but as part of the securty assuarance that a security 
enabled web services must provide, we need to be able to 
describe the relationship of a secure web service to 
XKMS and other XML based Trust Services, which provide 
key, certificate, and trust management services. 

Although, I don't think we should imply that the 
use of XKMS or other related standards is required. 

Zahid Ahmed 

-----Original Message----- 
From: David Booth [ mailto:dbooth@w3.org] 
Sent: Thursday, May 02, 2002 12:40 PM 
To: www-ws-arch@w3.org 
Subject: D-AR006.7 - Key management 



>"D-AR006.7 The security framework must include Key Management, pertaining 
>to Public Key Encryption (PKE) and Key Distribution Center (KDC)." 

Why make WS get involved in key management issues?  This seems beyond the 
scope of what WS Arch needs to specify. 


-- 
David Booth 
W3C Fellow / Hewlett-Packard 
Telephone: +1.617.253.1273 
Received on Thursday, 2 May 2002 20:57:03 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 3 July 2007 12:24:59 GMT