We respectfully disagree. Internet standards specify requirements
for interoperability over the entire Internet, not just in an
enterprise network. Many enterprise networks also need security.
Be assured that the requirement for strong, mandatory, interoperable
authentication will not be changed.
> Both ISO and IETF security standards have consistently mandated that
> "data confidentiality" (often shortened to "privacy") may ONLY be
> supported when BOTH "data integrity" (eg, hash matching) and "data
> authentication" (eg, certficate exchange) are used concurrently.
>
> Therefore, I suggest that we rename "secure" to "private" and clarify
> that, in any IPP protocol mapping, the IPP term "private" SHALL mean
> "mutual authentication, data integrity, and data confidentiality".
this is fine w/me.
Keith