To:
shollenbeck@verisign.com (Hollenbeck, Scott)
Cc:
ietf-provreg@cafax.se
From:
Bill Manning <bmanning@isi.edu>
Date:
Tue, 20 Mar 2001 07:14:43 -0800 (PST)
In-Reply-To:
<DF737E620579D411A8E400D0B77E671D750814@regdom-ex01.prod.netsol.com> from "Hollenbeck, Scott" at Mar 20, 2001 08:13:11 AM
Sender:
owner-ietf-provreg@cafax.se
Subject:
Re: security in draft-ietf-provreg-epp-0.txt
% We've already architected a solution that allows appropriate security % service layers, and forcing those services into the base protocol can % introduce redundancy -- such as when SMTP transport with S/MIME or PGP % security is required. % % <Scott/> We should be very clear that the architected solution is an acceptable solution not THE solution. Determining what is appropriate is... (outside the scope?) What we are required to do is document the security (authentication & integrity checks for sure) methods that the architected solution is using and note the strengths and weaknesses in the selected methods. --bill