ecrit-2----Page:7
1 2 3 4 5 6 7 8
|
Points Raised in List Discussion Performance burden of proposed measures channel security object signing What does user do if authentication fails? Need for security distinction between location by value and by reference Proposed DOS detection at mapping server doesn't work all requests are anonymous multiple requests from same IP address can be a valid condition Proposed countermeasures make impractical assumptions regarding trust anchors depending on what responsibilities are given to the user client Object signing not enough to prevent replay |