[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: authmeth question: definition of "sensitive"

To: "Roger Harrison" <RHARRISON@novell.com>
Subject: Re: authmeth question: definition of "sensitive"
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Tue, 13 Mar 2001 09:53:11 -0800
Cc: <ietf-ldapbis@OpenLDAP.org>
In-reply-to: <saad5414.035@prv-mail20.provo.novell.com>

At 11:05 PM 3/12/01 -0700, Roger Harrison wrote:
>Section 2 paragaph 1 defines "sensitive" as "data that will cause real damage to the owner if revealed."

>I propose that we change this definition to conform to the RECOMMENDED definition in RFC 2828 (Internet Security Glossary): Information is sensitive if disclosure, alteration, destruction, or loss of the information would adversely affect the interests or business of its owner or user.

I have no objection to this change.

>In general, I would like to ensure that our usage of security related terms in the authmeth draft conforms closely to the recommended definitions in RFC 2828.

In general, I do not have any objection with using terminology
more consistent with RFC 2828.  Of course, each change must be
carefully examined.

Kurt

References:
- authmeth question: definition of "sensitive"
  - From: "Roger Harrison" <RHARRISON@novell.com>

Prev by Date: RE: IETF#50 LDAPbis Agenda (updated)
Next by Date: Re: supertypes of an attribute description
Index(es):
- Chronological
- Thread