security-protocol message
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [Elist Home]
Subject: RE: First draft
- From: "Edwards, Nigel" <Nigel_Edwards@hp.com>
- To: Tim Moses <tim.moses@entrust.com>,"'security-protocol@lists.oasis-open.org'"<security-protocol@lists.oasis-open.org>
- Date: Thu, 01 Mar 2001 18:45:58 +0000
Title: First draft
Hi
Tim,
I have
just read this document and attach a version of the document with
my
comments in line using the microsoft word "comments facility".
Use
view->comments to see these.
I have
two main comments.
1.
For me, the comment that all assertions must be
protected using the XML signature facility
is too
strong.
There has been a discussion about this on both the use-case and
core-assertion mailing lists.
The issue is that if two parties need high performance, they might
establish a secure session
and exchange unsigned assertions, relying on the secure session
protocol to protect and
validate them.
2.
I think we are a bit light on error codes. I have tried to identify a few more
at appropriate places.
(Example
unknown entitlement assertion reference).
Other comments in
line as explained above.
Regards,
Nigel
Colleagues - Apologies. Some of you were not
correctly included in the "protocols" mail list (my fault). It is
corrected now. Please check out the mail I sent today. Best
regards. Tim.
http://lists.oasis-open.org/archives/security-protocol/200102/threads.html
---------------------------------------------------------------------------------------
Tim Moses
Tel:
613.270.3183
OasisProtocolDraftNigelComments.doc
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [Elist Home]
Powered by eList eXpress LLC