[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Subject: RE: XACML TC Charter Revision - Strawman
> ok. however, 'supposed to be' and 'presumably' in this context are the > fundamental premises of 'man in the middle' style attack (which is why > neither authentication, nor authorization is enough alone). > again, i may > just be paranoid, but if PEP <-> PDP communications are not > local, this > is a possibility. Excuse me. Are you saying that no means exists whereby a PEP and PDP could mutually authenticate and exchange integrity and confidentiality protected data over an insecure network? Hal
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Powered by eList eXpress LLC