- From: <sam.watkins@bt.com>
- Date: Thu, 14 Oct 2004 12:23:44 +0100
- To: <public-sws-ig@w3.org>
- Message-ID: <21DA6754A9238B48B92F39637EF307FD0A27DF7F@i2km41-ukdy.domain1.systemhost.net>
If we have "service insurance" as described by Joe, "I see you did not receive a response on the above point yet: What this comes down to is electronic trust, and potentially SLAs (service-level agreements). For example, Web Service A is provided by a service provider (that we will call Service Provider A). The service consumer would need to have an SLA with Service Provider A that makes Service Provider A responsible for the authenticity and non-harmful nature of Web Service A. What is missing in this is something that I foresee a need for in the future - and that is some type of insurance policy (call it "service insurance") by which a service provider can be held liable for damages by a service that they offer (whether the damages be theft of personal information as you describe above, or interruption to business operations if a service is down for longer than the agreed-upon permissible time, etc.). A service consumer would then be entitled to some monetary award by filing a claim with the service insurance provider. This is an incentive for a service provider to ensure the authenticity, non-harmfulness, and dependability of their services. I foresee the existence of this new type of insurance provider within the next 10 years. An e-business registry - such as UDDI or ebXML Registry - might also be involved here. In this case, the service consumer would have an SLA with the registry provider, who vouches for the authenticity, non-harmfulness, and dependability of the services within its registry." However, as with any business transaction, I protect myself by using trust worthy suppliers so will not require such insurance. I do not trust businesses until I have established trust. As such, I would not insure myself against this loss as an individual. As a supplier I would aim to only deal with companies I knew and trusted - and I certainly would not request or pass on credit card details unless I were using them. So again I would not buy such insurance. Anyway, with a credit card, I would expect that any fraud of this kind would be covered by the credit cards insurance... regards, Sam J Watkins ------------------------------------------------------------------ Next Generation Web Research, BT Tel: +44(0) 1473 609636 ---------------------------------------------------------------------- British Telecommunications plc Registered office: 81 Newgate Street London EC1A 7AJ Registered in England no. 1800000 This electronic message contains information from British Telecommunications plc which may be privileged and confidential. The information is intended to be for the use of the individual(s) or entity named above. If you are not the intended recipient, be aware that any disclosure, copying, distribution or use of the contents of this information is prohibited. If you have received this electronic message in error, please notify us by telephone or email (to the number or address above) immediately. Activity and use of the British Telecommunications plc email system is monitored to secure its effective operation and for other lawful business purposes. Communications using this system will also be monitored and may be recorded to secure effective operation and for other lawful business purposes.
Received on Thursday, 14 October 2004 11:23:16 UTC