Re: Use cases in Note from Mary Ellen Zurko on 2007-01-29 (public-wsc-wg@w3.org from January 2007)

From: Mary Ellen Zurko <Mary_Ellen_Zurko@notesdev.ibm.com>
Date: Mon, 29 Jan 2007 09:35:21 -0500
To: tyler.close@hp.com
Cc: public-wsc-wg@w3.org
Message-ID: <OF88D8584E.AB63E05C-ON85257272.004F6A67-85257272.005025EC@LocalDomain>

There's been follow on discussion on all this, so I just want to make a 
comment in general here. 

Not everything in our recommendations will be literal, detailed 
presentation information. There's scope in our charter for more general 
best practice recommendations in terms of both design and process for 
design ("practices for the secure and usable presentation of this 
information"). I expect some of our recommendations to be specific 
presentation information, and some to be more general. I expect some of 
the level of detail to fall out when we initially draft the 
recommendations, and for it then to be refined as we test them, with 
users, and with expert feedback. 

In terms of shortening the Use Cases, I'm wondering if it makes sense to 
reference the Wiki itself for the fuller discussions. Thomas, does this 
make any sense, or is the wiki explicitly transitory, and not expected to 
live as long as the Note? 

          Mez

Mary Ellen Zurko, STSM, IBM Lotus CTO Office       (t/l 333-6389)
Lotus/WPLC Security Strategy and Patent Innovation Architect




"Close, Tyler J." <tyler.close@hp.com> 
Sent by: public-wsc-wg-request@w3.org
01/18/2007 08:03 PM

To
<public-wsc-wg@w3.org>
cc

Subject
Use cases in Note







I've made an initial pass at the Use cases for the Note.

http://www.w3.org/2006/WSC/drafts/note/Overview.html#use-cases

I've shortened them all up a lot. Please read to see if I've butchered
them too much.

Some of the proposed use cases don't appear yet, because I want to talk
about them some more. They are listed below:

http://www.w3.org/2006/WSC/wiki/UserDebugging

Does this really need to be in scope? Are we really going to standardize
the presentation of all the myriad details that a software engineer
might want to access? Does *every* user agent really need to support
this kind of debugging activity?

http://lists.w3.org/Archives/Public/public-wsc-wg/2007Jan/0089.html

I still don't understand what reliable security information the user is
trying to acquire.

http://www.w3.org/2006/WSC/wiki/SSOFederatedIdentity

These services sound like applications in their own right and it looks
like they are still competing with each other on what the application
should be. Should we really be trying to standardize the presentation of
still developing applications?

http://www.w3.org/2006/WSC/wiki/PadlockIconMisuse

There's a lot of content here, but I'm not sure what we can do with it
in the Note, due to the restrictions on our use of trademarks.

Tyler

Received on Monday, 29 January 2007 14:35:38 UTC