Re: AW: AW: [smila-dev] Smila Security Concept

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

Re: AW: AW: [smila-dev] Smila Security Concept

From: Leo Sauermann <leo.sauermann@xxxxxxx>
Date: Mon, 19 Jan 2009 14:10:59 +0100
Delivered-to: smila-dev@xxxxxxxxxxx
List-archive: <https://dev.eclipse.org/mailman/private/smila-dev>
List-help: <mailto:smila-dev-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/smila-dev>, <mailto:smila-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/listinfo/smila-dev>, <mailto:smila-dev-request@eclipse.org?subject=unsubscribe>
Organization: DFKI GmbH
User-agent: Thunderbird 2.0.0.19 (Windows/20081209)

It was Daniel.Stucky@xxxxxxxxxxx who said at the right time 19.01.2009 11:58 the following words:

Good to talk about it!

This is just a misunderstanding. SID is not meant to be used as a prefix at all. The values used in the XML snippets are just examples for any values that could be used there ! They should represent raw values returned by the DSSP “as is” without any smila component modifying them.

I will change them to just some numbers to avoid confusion J.

actually, you should document the datatypes and the intended values for fields,
like in a standards document: "in field X values of Y are intended, values MUST not include (a,b,c) but SHOULD give enough informaiton to M,N,O"

best
Leo

Bye,

Daniel

Von: smila-dev-bounces@xxxxxxxxxxx [mailto:smila-dev-bounces@xxxxxxxxxxx] Im Auftrag von Leo Sauermann
Gesendet: Montag, 19. Januar 2009 11:54
An: Smila project developer mailing list
Betreff: Re: AW: [smila-dev] Smila Security Concept

ok. good!

I see that the spirit of my changes is not reflected so much, so I write it now via email:
my proposal to get rid of the "SID_" prefix is lost,
also storing two completly different values in the same field (SID and external ids) I changed to two different fields, this is also lost now.

These suggestions were based on "when we got XML, its silly to use "SID_" as a prefix inside a value" and that you should name the fields according to what is in it, and not parse the content to know what is inside.

please take it into consideration, its just common XML use.

best
Leo

It was Daniel.Stucky@xxxxxxxxxxx who said at the right time 19.01.2009 11:36 the following words:

Hi Leo, thanks for your feedback.

In all our concept specifications we have a section "Discussion" that should be used to provide feedback and discuss the topic. I guess this is an internal agreement of the project team that is not documented anywhere, so no blame on you :-)

The result of the discussion can then be worked into the original concept (in general by the creator of the concept). Otherwise the original concept may blur as different views/intentions are mixed.

Therefore I restored the original version, kept some of your improvements for better understanding and moved changes/suggestions/questions to the Discussion section. Please check if I forgot anything and if the text in discussion section makes sense or needs some rework.

Bye,

Daniel

-----Ursprüngliche Nachricht-----

Von: smila-dev-bounces@xxxxxxxxxxx [mailto:smila-dev-

bounces@xxxxxxxxxxx] Im Auftrag von Leo Sauermann

Gesendet: Freitag, 16. Januar 2009 18:57

An: Smila project developer mailing list

Betreff: Re: [smila-dev] Smila Security Concept

It was Daniel.Stucky@xxxxxxxxxxx who said at the right time 16.01.2009

14:20 the following words:

Hi all,

I have created a specification page for handling security in Smila:

http://wiki.eclipse.org/SMILA/Specifications/Smila_Security_Concept

Feel free to discuss and comment, feedback is most welcome.

I changed some parts of the wikipage that were a bit unspecific.

I interpret your call for discussion as a call for changing the wiki -

as in "a wiki is a place to delete and change text".

Generally, I see that the security considerations should be taken more

deeply,

for example by looking into the dark cave of SASL/LDAP/Kerberos for

wisdom about authentification,

but for storing user identification and group identification of indexed

content, I see a complex thing coming up.

Also, storing these sensible information into normal attributes makes

it

open for easier hacking,

I wonder if some fields should be in protected areas of records.

best

Leo

Bye,

Daniel

_______________________________________________

smila-dev mailing list

smila-dev@xxxxxxxxxxx

https://dev.eclipse.org/mailman/listinfo/smila-dev

--

____________________________________________________

DI Leo Sauermann       http://www.dfki.de/~sauermann

Deutsches Forschungszentrum fuer

Kuenstliche Intelligenz DFKI GmbH

Trippstadter Strasse 122

P.O. Box 2080           Fon:   +49 631 20575-116

D-67663 Kaiserslautern  Fax:   +49 631 20575-102

Germany                 Mail:  leo.sauermann@xxxxxxx

Geschaeftsfuehrung:

Prof.Dr.Dr.h.c.mult. Wolfgang Wahlster (Vorsitzender)

Dr. Walter Olthoff

Vorsitzender des Aufsichtsrats:

Prof. Dr. h.c. Hans A. Aukes

Amtsgericht Kaiserslautern, HRB 2313

____________________________________________________

_______________________________________________

smila-dev mailing list

smila-dev@xxxxxxxxxxx

https://dev.eclipse.org/mailman/listinfo/smila-dev

_______________________________________________

smila-dev mailing list

smila-dev@xxxxxxxxxxx

https://dev.eclipse.org/mailman/listinfo/smila-dev

--

____________________________________________________

DI Leo Sauermann       http://www.dfki.de/~sauermann

Deutsches Forschungszentrum fuer

Kuenstliche Intelligenz DFKI GmbH

Trippstadter Strasse 122

P.O. Box 2080           Fon:   +49 631 20575-116

D-67663 Kaiserslautern  Fax:   +49 631 20575-102

Germany                 Mail:  leo.sauermann@xxxxxxx

Geschaeftsfuehrung:

Prof.Dr.Dr.h.c.mult. Wolfgang Wahlster (Vorsitzender)

Dr. Walter Olthoff

Vorsitzender des Aufsichtsrats:

Prof. Dr. h.c. Hans A. Aukes

Amtsgericht Kaiserslautern, HRB 2313

____________________________________________________


_______________________________________________
smila-dev mailing list
smila-dev@xxxxxxxxxxx
https://dev.eclipse.org/mailman/listinfo/smila-dev

-- 
____________________________________________________
DI Leo Sauermann       http://www.dfki.de/~sauermann 

Deutsches Forschungszentrum fuer 
Kuenstliche Intelligenz DFKI GmbH
Trippstadter Strasse 122
P.O. Box 2080           Fon:   +49 631 20575-116
D-67663 Kaiserslautern  Fax:   +49 631 20575-102
Germany                 Mail:  leo.sauermann@xxxxxxx

Geschaeftsfuehrung:
Prof.Dr.Dr.h.c.mult. Wolfgang Wahlster (Vorsitzender)
Dr. Walter Olthoff
Vorsitzender des Aufsichtsrats:
Prof. Dr. h.c. Hans A. Aukes
Amtsgericht Kaiserslautern, HRB 2313
____________________________________________________

Follow-Ups:
- AW: AW: AW: [smila-dev] Smila Security Concept
  - From: Daniel.Stucky

References:
- [smila-dev] Smila Security Concept
  - From: Daniel.Stucky
- Re: [smila-dev] Smila Security Concept
  - From: Leo Sauermann
- AW: [smila-dev] Smila Security Concept
  - From: Daniel.Stucky
- Re: AW: [smila-dev] Smila Security Concept
  - From: Leo Sauermann
- AW: AW: [smila-dev] Smila Security Concept
  - From: Daniel.Stucky

Prev by Date: AW: AW: [smila-dev] Smila Security Concept
Next by Date: AW: AW: AW: [smila-dev] Smila Security Concept
Previous by thread: AW: AW: [smila-dev] Smila Security Concept
Next by thread: AW: AW: AW: [smila-dev] Smila Security Concept
Index(es):
- Date
- Thread

Breadcrumbs