OASIS ebXML Messaging Services TC

 View Only

RE: Threat assessment, some dissent RE: [ebxml-msg] security pro blemwith ebXML MS

  • 1.  RE: Threat assessment, some dissent RE: [ebxml-msg] security pro blemwith ebXML MS

    Posted 11-09-2001 17:37
    Dale,
    
    In any case, the MS spec should state clearly what
    kind of security it supports and what it doesn't.
    It definitely is not in the interest of anyone
    to say that ebXML MS provides certain security guarantees,
    when it doesn't. Possibly the security considerations
    section needs a good rewrite, may be other too.
    (Things like CPA will have Content-Type should be in MS spec.
    However, I am not sure MS assumes the uses a CPA.
    What if another type contract is used? Hope I am 
    not opening another can of worms:-))
    
    I do hope this subject gets discussed at the F2F.
    
    Regards,
    -Suresh