[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Agenda
Hi Folks, I looked at the minutes of our last meeting to refresh my memory on what we have been inching up on for the next steps we should take as a subcommittee, and it seems that there are two main issues, other than ongoing CAP stuff, so I suggest for an agenda: 1. Identity Authentication Issues, not just for CAP but for overall EM messages--as part and parcel of trusted network security issues and the overall EM message container issue. I know that sounds like three issues in one, but as I thought about it, they are all so entangled that teasing out just one or the other tends to be somewhat self-defeating since the root issue of an effective EM response requires the trusted network, which requires authentication and authorization and the level of trust/security for EM messages depends on the urgency/severity of the incident, etc, etc, etc... It's a chicken and egg situation that just looks like poultry to me. 2. Registries. To some extent a decent set of policies with regard to registries helps solve the ID/Security tangle, but we need to decide if we should suggest building one with OASIS, just specify UDDI and/or ebXML specifications as the framework along with recommendations for security policies, or investigate other options, such as punting to DHS and other governmental entities to be responsible for developing their own policies, which they are going to do in any event, whether we make ourselves available to assist or not. TTYS. (Talk to you soon.) Ciao, Rex -- Rex Brooks GeoAddress: 1361-A Addison, Berkeley, CA, 94702 USA, Earth W3Address: http://www.starbourne.com Email: rexb@starbourne.com Tel: 510-849-2309 Fax: By Request
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]