- From: Mary Ellen Zurko <Mary_Ellen_Zurko@notesdev.ibm.com>
- Date: Fri, 28 Mar 2008 13:33:29 -0400
- To: "Thomas Roessler <tlr" <tlr@w3.org>
- Cc: public-wsc-wg@w3.org
Received on Friday, 28 March 2008 17:34:10 UTC
> > "Sensitive transactions also MUST be protected using the same level of > > protection." > > I don't know how to give examples of something that is sensitive, and > > something that isn't. Which seems important for understanding conformance > > to this one. > > I don't know who contributed this text and have no strong opinion > about it. We (the working group, not you and me) need to have some notion of what it means; otherwise it cannot be usefully used in conformance language. While trolling through more issues to close out or put on an agenda, I came (back) to this: http://lists.w3.org/Archives/Public/public-wsc-wg/2007Nov/0105.html "sensitive data, like login information and credit card information," The examples are things sometimes called sensitive personal information. Information with which directly enables identity theft in some context. Is that the definition we'd like to use here? >
Received on Friday, 28 March 2008 17:34:10 UTC