-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Greetings!
The paragraph under 17 Security Considerations reads:
*****
TOSCA does not mandate the use of any specific mechanism or technology
for client authentication. However, a client MUST provide a principal
or the principal MUST be obtainable by the infrastructure.
*****
Err, these are the only two uses of "principal" in the TOSCA document.
Both are requirements (MUST) and yet are undefined in the document.
Even by reference to some other document that defines "principal."
Principal should:
1. Be removed.
2. Defined in TOSCA.
3. Defined in some document cited in the normative references and that
definition referenced here.
Hope everyone is having a great week!
Patrick
- --
Patrick Durusau
patrick@durusau.netTechnical Advisory Board, OASIS (TAB)
Former Chair, V1 - US TAG to JTC 1/SC 34
Convener, JTC 1/SC 34/WG 3 (Topic Maps)
Editor, OpenDocument Format TC (OASIS), Project Editor ISO/IEC 26300
Co-Editor, ISO/IEC 13250-1, 13250-5 (Topic Maps)
Another Word For It (blog):
http://tm.durusau.netHomepage:
http://www.durusau.netTwitter: patrickDurusau
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Thunderbird -
http://www.enigmail.net/iQIcBAEBAgAGBQJSH7/SAAoJEAudyeI2QFGo6FUP/iKK3I/qcr1/v5Yp3aLR1Y/z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=nmCk
-----END PGP SIGNATURE-----