[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: XML and stateless protocols

To: ietf-xml-use@xxxxxxx
Subject: Re: XML and stateless protocols
From: Miles Sabin <miles@xxxxxxxxxxxxxx>
Date: Tue, 18 Jun 2002 11:33:37 +0100
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-xml-use/mail-archive/>
List-id: <ietf-xml-use.imc.org>
List-unsubscribe: <mailto:ietf-xml-use-request@imc.org?body=unsubscribe>
References: <>
Sender: owner-ietf-xml-use@xxxxxxxxxxxx

Hollenbeck, Scott wrote,
> Mark Baker wrote,
> > XML 1.0 provides external entities, which are an easy way to make
> > the meaning of message depend on something external.  Using
> > schema languages that change the Infoset, like XML Schema, are
> > another way.
> >
> > I think it would be a good idea to discuss this in the draft.
>
> How is this unique to XML, and thus of specific concern for the
> draft?  One could take the general statement of "care must be taken
> not to make the meaning of a message depend on information outside
> the message itself" and apply it to _any_ protocol design.

This is true, but it might be worth emphasizing, because XML provides 
intrinsic mechanisms which allow a document instance to depend on non-
local information.

Not only that, those mechanisms might be abused in unexpected ways 
(particularly if generic off-the-shelf XML parsers are used).

I mentioned a few cases a week or so ago on xml-dev,

  http://lists.xml.org/archives/xml-dev/200206/msg00240.html
  http://lists.xml.org/archives/xml-dev/200206/msg00247.html

Cheers,


Miles

Follow-Ups:
- Re: XML and stateless protocols
  - From: Mark Baker

References:
- RE: XML and stateless protocols
  - From: Hollenbeck, Scott

Prev by Date: RE: your comments on 4.6.1 Namespaces and Attributes
Next by Date: Re: Additional syntactic restrictions
Previous by thread: Re: XML and stateless protocols
Next by thread: Re: XML and stateless protocols
Index(es):
- Date
- Thread