Re: Document submitted for draft-ietf-ltans-notareq-01.txt

To: Larry Masinter <LMM@xxxxxxx>

Subject: Re: Document submitted for draft-ietf-ltans-notareq-01.txt

From: Paul-André PAYS <paul-andre.pays@xxxxxxxxxx>

Date: Mon, 25 Oct 2004 18:59:25 +0200

Cc: "'Denis Pinkas'" <Denis.Pinkas@xxxxxxxx>, ietf-ltans@xxxxxxx

In-reply-to: <>

List-archive: <http://www.imc.org/ietf-ltans/mail-archive/>

List-id: <ietf-ltans.imc.org>

List-unsubscribe: <mailto:ietf-ltans-request@imc.org?body=unsubscribe>

Organization: Edelweb - Groupe ON-X

References: <>

Sender: owner-ietf-ltans@xxxxxxxxxxxx

User-agent: Mozilla Thunderbird 0.8 (Windows/20040913)

Title: PAP Sig

-- Larry Masinter -- a dit, - le 25/10/2004 18:28:

This new title will add even more confusion with the PKIX 
working group.


I'm sorry about the confusion over the title. We had put off
working through the document, so there was some rush to get
a new version out.

I'm a little uneasy about "Data Validation and Certification"
because in many of the use cases, the thing being validated
or certified isn't so much "data" as it is an "event" -- an
oath was administered, an agreement was understood, etc.

On one hand, you are right, in many cases what will be certified will not be an document, but as you say a fact or an event, but on the other hand, we are dealing with information systems and "facts" or "events" will have to be represented and it will be by some "data" (a combination of what, when, by whom ...)

As far as my understanding of the english language is correct, "data", as being the more general word(even vague, here it is a clear advantage over a more "accurate" or "connotated" term) is definitely the more appropriate.

We can probably have a shortexplanation in the foreword of the document, stating that in this document the word "data" has to be understood as the "electronic representation" of a "fact" (or "event") .
One specific case of such a "fact" is the submission or validation of a document at a given date and time (optionnaly by a specific user), one specific subcase being the validation of a X.509 certificate.
Another case being for example the receipt notification by a Long Term Archive service,
or the the "approval" of a document at a given time by at least 67% of the members of a given list of users.

Regards,

-- PAP

If we keep these use cases, can you think of other alternatives?

Larry

Edelweb	Groupe ON-X Pôle Sécurité
paul-andre.pays@xxxxxxxxxx	papays@xxxxxxxx
http://www.edelweb.fr/	http://www.on-x.com/

Tel. + 33 1 40 99 14 14. Fax. +33 1 40 99 99 58 -- Adresse : 15, quai de Dion Bouton - 92816 Puteaux cedex
Pour vérifier la signature électronique, http://edelpki.edelweb.fr/ vous permet d'obtenir le certificat de l'autorité et la LCR.

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature