OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

ws-rx message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [ws-rx] New Issue: security threats and requirements

Attached is my updated proposal for i121.
 
- gp

From: Gilbert Pilz
Sent: Tuesday, May 09, 2006 2:42 PM
To: ws-rx@lists.oasis-open.org
Subject: [ws-rx] New Issue: security threats and requirements

Chapter 5 of the WS-RM spec has a number of problems:
  1. It lacks information specific to WS-RM. What needs to be protected and why?
  2. It is overly general in parts; describing general security concepts that don't have anything specifically to do with WS-RM.
  3. It recommends specific solutions (WS-SecureConversation) in preference to other solutions (e.g. HTTPS).
  4. It lacks the detailed security requirements that are needed by implementers to build secure WS-RM implementations.
Proposal: Replace Chapter 5 with the attached material.

sec_analysis-06-09.pdf

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]