OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-use message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Subject: RE: Resend: ISSUE:[UC-8-0*:Intermediaries*]

Title: RE: Resend: ISSUE:[UC-8-0*:Intermediaries*]

Hi Hal,

I certainly vote for this rule.  I'd want us to look very carefully (and very warily) at any use case that can't live within this.

I was still on the call when Bob said this and thought about interjecting but figured no one would hear me.  I can only assume he was trying to be provocative himself (note that he has expressed the same feeling about attribute certificates, but how could he really feel this way about ACs and yet support SAML assertions, which are attribute certificates by definition?).

The reality is that we all see, use, and live with delegation every day.  How many times have you received a bounce-back e-mail message saying, "I'm on vacation until some_date; if you really need 'X', call Josephine at this number..."?  This is delegation in action.  Somehow, nobody seems to get confused by this, get mired down in the complexity of it all, or emerge from "down that road" covered with scars.

There is no question that delegation can get complex; nobody is arguing that point.  However, I contend that if we can't mirror in the electronic domain what we are all accustomed to in our current business practices, then people won't be satisfied with it.  We will need this functionality eventually (at some level of complexity) because customers will demand it.  Why can't we accept that and plan for it now?


[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Powered by eList eXpress LLC