RE: Note In Scope from Doyle, Bill on 2006-12-19 (public-wsc-wg@w3.org from December 2006)

From: Doyle, Bill <wdoyle@mitre.org>
Date: Tue, 19 Dec 2006 09:55:52 -0500
To: "Timothy Hahn" <hahnt@us.ibm.com>, <public-wsc-wg@w3.org>
Message-ID: <518C60F36D5DBC489E91563736BA4B5801302238@IMCSRV5.MITRE.ORG>

 
My question is if the WG should make an attempt to determine risk to
user. If the site uses "security protocols" e.g. SSL/TLS, PKI,
Passwords then the risk to the user is higher.
 
The user may not care if they are not exchanging any credentials.
 
 if s%organization to which that belongs%organization to which that
name/site/address belongs% And security credentials are not used than
the rest of the session is out of scope -  Risk cannot be defined.
 

 
Bill D.
wdoyle@mitre.org
732 578 6344


  _____  

From: public-wsc-wg-request@w3.org
[mailto:public-wsc-wg-request@w3.org] On Behalf Of Timothy Hahn
Sent: Tuesday, December 19, 2006 8:41 AM
To: public-wsc-wg@w3.org
Subject: Re: Note In Scope



Hi, 

I'm ok with the below except for the statemetn about "what reputation
services think about that source" part. 

While I agree personally that this group has consider how such
information should factor in, I don't think it needs to be surfaced
here. 

Also, 

s%organization to which that belongs%organization to which that
name/site/address belongs% 

Regards, 
Tim Hahn

Internet: hahnt@us.ibm.com
Internal: Timothy Hahn/Durham/IBM@IBMUS
phone: 919.224.1565     tie-line: 8/687.1565
fax: 919.224.2530




Thomas Roessler <tlr@w3.org> 
Sent by: public-wsc-wg-request@w3.org 


12/19/06 07:13 AM 


To
Stephen Farrell <stephen.farrell@cs.tcd.ie> 

cc
"Close, Tyler J." <tyler.close@hp.com>, public-wsc-wg@w3.org 

Subject
Re: Note In Scope

	





On 2006-12-19 12:11:38 +0000, Stephen Farrell wrote:

> It says: "A primary concern of this Working Group is the
> presentation of information identifying the host of a web
> resource."
> 
> I'm not convinced that my mother would make much sense out of
> knowing that the WSC wiki is currently at 193.51.208.69, or even
> www.w3.org, so I'd like this abstracted a bit - user's really
> care more about the organisation with which they think they're
> interacting.
> 
> So, I'd reword that to: "A primary concern of this Working Group
> is the presentation of information about the "source" of the web
> resources with which a user is interacting, e.g. the host DNS
> name or IP address, the name of the organisation to which that
> belongs, what reputation services think about that source, etc."
> 
> I've not changed the wiki since I'm not really that happy with the
> suggested re-wording,

+1 to all of this.

-- 
Thomas Roessler, W3C  <tlr@w3.org>

Received on Tuesday, 19 December 2006 15:44:03 UTC