[OGSA-AUTHZ] Draft XACML/SAML Protocol Profile
Valerio Venturi
valerio.venturi at cnaf.infn.it
Thu Dec 13 01:03:51 CST 2007
Valerio Venturi wrote:
>
> Hi all,
> it looks to me that most of the doubts are not on integrity and
> confidentiality in themselves, but about considering them more
> important than authentication.
> Is assuring that something you don't know where is coming from wasn't
> altered important? The case of policy requests you mentioned is even
> more critical
I meant that Chad has mentioned, it was in a previous mail
but I could imagine cases where deployers had a more lax
view, especially on the policy request. So, I just left it as a SHOULD
so that individual deployments could choose not to do it, if they wanted.
Valerio
More information about the ogsa-authz-wg
mailing list