W3C home > Mailing lists > Public > www-ws-arch@w3.org > January 2004

RE: Abbie's security section

From: Cutler, Roger (RogerCutler) <RogerCutler@chevrontexaco.com>
Date: Thu, 22 Jan 2004 11:58:39 -0600
Message-ID: <7FCB5A9F010AAE419A79A54B44F3718E026F019A@bocnte2k3.boc.chevrontexaco.net>
To: "Hugo Haas" <hugo@w3.org>, "Francis McCabe" <frankmccabe@mac.com>
Cc: www-ws-arch@w3.org

Oh, I think I just figured it out.  You mean section 3.4.5.  Gee, I
don't remember that discussion and I like that section.  It seems to me
to be refreshingly useful.  If nothing else, I believe that the
presentation is more detailed and more unified than the stuff I put in
my list, which as you may recall I am now resisting editing on the
grounds of "enough is enough ... It's not supposed to be normative".

Could we possibly move this to a halfway house like a non-normative
appendix or something?  Say something like "We're putting some extra
effort into this because we know that people are particularly interested
in how existing security specs fit together"?

-----Original Message-----
From: www-ws-arch-request@w3.org [mailto:www-ws-arch-request@w3.org] On
Behalf Of Hugo Haas
Sent: Thursday, January 22, 2004 11:12 AM
To: Francis McCabe
Cc: www-ws-arch@w3.org
Subject: Re: Abbie's security section


Frank, all,

As per my action item from yesterday's editors' call, I have reviewed
the two security sections (I had previously reviewed the old one...)

Here are the changes that I have made:
- I have removed the technology-specific section[1] as discussed; this
  should go into Roger's list.
- I have reviewed both sections, and noted that the "Trust and
  Discovery" discussion was missing from the new section. I moved it
  there and deleted the old section.
- I have changed the terms used (client/server) to be consistent with
  the document (requester/provider entity/agent).

Despite my first comments[2], I have kept the requirements section
because, in the end, I think that it doesn't really duplicate
information but more helps liaising between the threats and the
architectural considerations.

The new section is at:

 
http://dev.w3.org/cvsweb/~checkout~/2002/ws/arch/wsa/wd-wsa-arch-review2
.html?rev=1.102#security

Latest version at:

 
http://dev.w3.org/cvsweb/~checkout~/2002/ws/arch/wsa/wd-wsa-arch-review2
.html#security

Regards,

Hugo

  1.
http://dev.w3.org/cvsweb/~checkout~/2002/ws/arch/wsa/wd-wsa-arch-review2
.html?rev=1.101&content-type=text/html;%20charset=iso-8859-1#id2281646
  2.
http://lists.w3.org/Archives/Member/w3c-wsa-editors/2003Dec/0008.html
-- 
Hugo Haas - W3C
mailto:hugo@w3.org - http://www.w3.org/People/Hugo/
Received on Thursday, 22 January 2004 12:58:51 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 3 July 2007 12:25:25 GMT