[CAP] CAP Security Using Digital Signatures
Art Botterell
ABott at so.cccounty.us
Thu Mar 12 10:22:55 PDT 2009
There's definitely a need to deal with interoperable authentication, Hannes, at least here in the U.S. where we have several federal warning systems attempting to integrate with state and local systems built by various providers.
As for your comment re the semantics, not sure what your concerns are there, but we could certainly discuss any specific suggestions you might have, especially now that we have a number of implementers with several years of real-world operation under their belts.
- Art
Art Botterell, Manager
Community Warning System
Contra Costa County Office of the Sheriff
50 Glacier Drive
Martinez, California 94553
(925) 313-9603
fax (925) 646-1120
>>> "Hannes Tschofenig" <Hannes.Tschofenig at gmx.net> 3/12/2009 9:40 AM >>>
Hi Art,
I believe a more urgent item for work on CAP is to come up with better
semantic of the elements in the CAP XML spec itself.
The lack of precise semantic will IMHO make end-to-end usage challenging.
On the digital signature aspects I wonder whether there are (not just
theoretical) threats that demand it's usage in the envisioned usage
scenarios.
Ciao
Hannes
This list is not for announcements, advertising or advocacy of any particular program or product other than the CAP itself.
More information about the CAP-list
mailing list