> So part of the protocol exchange is a request from one endpoint to
> the other for a location. The response I envision must allow for I
> consent/I forbid/I don't care responses to the location request.
i think that is the core of what this wg was charterd to do, requirements
for privacy/security. to quote
"The primary task of this working group will be to assess the the
authorization, integrity and privacy requirements that must be met in
order to transfer such information, or authorize the release or
representation of such information through an agent."
note that authentication of the requestor is of interest, though possibly
less so when the host being asked to divulge its location placed the
'call'. while i have 'divulge-to-family' turned on, how does the device
know the requestor is my spouse?
and precision is also of relevance. two extremes:
o i only want to divulge my exact location under very restricted
circumstances
o i want to divulge my mobile phone's time zone to anyone, as i want
them to use that info to decide whether it is polite to call me.
note that a cruise through the archives (i am not sure if this list and its
predecessor share archive(s)) will show that this has been discussed before.
randy
Received on Fri Aug 17 13:46:29 2001
This archive was generated by hypermail 2.1.8 : Thu Jan 22 2004 - 12:32:22 EST