Re: Back to terminology

From: Adam Shostack ^lt;adam@zeroknowledge.com>
Date: Tue Feb 19 2002 - 18:55:09 EST

On Tue, Feb 19, 2002 at 03:50:23PM -0800, Randall Gellens wrote:
> At 12:09 AM +0100 2/20/02, Cuellar Jorge wrote:
>
> >But in order to enforce the policies the location server
> >does need to know that they are authentic, or not?
>
> Yes, but it's not clear that this is a problem we have to deal with.

If a policy is not authentic, then we are exposed to either a possible
violation of someone's privacy preference or a denial of service.

I think that we need to "deal with the problem" by documenting a
requirement.

Adam
Received on Tue Feb 19 19:02:19 2002

This archive was generated by hypermail 2.1.8 : Thu Jan 22 2004 - 12:32:22 EST