- From: Hugo Haas <hugo@w3.org>
- Date: Thu, 30 Jan 2003 14:18:06 +0100
- To: Daniel Weitzner <djweitzner@w3.org>
- Cc: www-wsa-comments@w3.org
Hi Danny.
* Daniel Weitzner <djweitzner@w3.org> [2002-06-12 15:38-0400]
> Requirement AR006.2.1 seeks to provide from authentication for the
> identities of communicating parties. The use of the term 'identity' should
> be clarified. As written, this requirement could me that the legal name of a
> communicating party is to be authenticated, or simply that the identifier,
> whether name, email address, IP address, etc. associated with the
> communication is authenticated. If the meaning is the former, then it should
> be clarified that anonymous and pseudonymous communications must be
> supported. If the latter (much simpler from a privacy perspective) then the
> scope of this requirement should be narrowed.
The Web Services Architecture Working Group agreed during the 26
September 2002 teleconference[1] to adopt the proposed[2] wording:
AR006.2.1 The security framework must enable Authentication of the
parties participating to an exchange.
This text appears in the 14 November 2002 Working Draft[3] of the Web
Services Architecture Requirements[4], which is the current latest
version.
Please let us know if this resolution doesn't adequately address your
concerns.
Regards,
Hugo
1. http://www.w3.org/2002/ws/arch/2/09/minutes26Sept
2. http://lists.w3.org/Archives/Public/www-ws-arch/2002Sep/0233.html
3. http://www.w3.org/TR/2002/WD-wsa-reqs-20021114
4. http://www.w3.org/TR/wsa-reqs
--
Hugo Haas - W3C
mailto:hugo@w3.org - http://www.w3.org/People/Hugo/
Received on Thursday, 30 January 2003 09:42:51 UTC