Re: ISSUE-189 (SharedSecretWithWhom): shared secret from UA of web site? [wsc-xit] from Mary Ellen Zurko on 2008-03-20 (public-wsc-wg@w3.org from March 2008)

From: Mary Ellen Zurko <Mary_Ellen_Zurko@notesdev.ibm.com>
Date: Thu, 20 Mar 2008 12:29:28 -0400
To: stephen.farrell@cs.tcd.ie
Cc: public-wsc-wg@w3.org
Message-ID: <OFC51C1355.392A824B-ON85257412.005A7BD4-85257412.005A9702@LocalDomain>

Can I get you to update this to follow our best practices?
http://www.w3.org/2006/WSC/wiki/WriteGoodIssue

It will help me understand just what this issue is about. 




From:
Web Security Context Working Group Issue Tracker <sysbot+tracker@w3.org>
To:
public-wsc-wg@w3.org
Date:
03/19/2008 11:39 AM
Subject:
ISSUE-189 (SharedSecretWithWhom): shared secret from UA of web site? 
[wsc-xit]




ISSUE-189 (SharedSecretWithWhom): shared secret from UA of web site? 
[wsc-xit]

http://www.w3.org/2006/WSC/track/issues/

Raised by: Stephen Farrell
On product: wsc-xit


The current 7.1.2 [1] seems to be vague as to whether the
shared secret is shared with the UA or site.

Would it be a good/bad idea to ask that this be made clear
to the user (where "this" = "whether the secret is between
user and UA or user and site").

TLR: Reckons that MEZ's input is needed here since she edited
this last.

[1] 
http://www.w3.org/2006/WSC/drafts/rec/rewrite.html#sharedsecret-goodpractice

Received on Thursday, 20 March 2008 16:30:10 UTC