|
Andreas Savva: 11/12/2007 10:33 PM EST
|
|
Action: |
Update
Category set to SP - Secure Transport
|
|
|
Hiro Kishimoto: 09/01/2007 9:38 PM EDT
|
|
Comment: |
checked.
|
|
Action: |
Update
Closed set to 09/01/2007
Status changed from Resolved to Closed
|
|
Duane Merrill: 07/26/2007 5:23 PM EDT
|
|
Comment: |
Yes. The onus should be on the INSTANCE to require that the CONSUMER either authenticate via SSL/TLS or at the message level. The wording has been
changed to:
C0400 – An INSTANCE SHOULD require that the CONSUMER perform one or both of the following:
a) Authenticate itself as part of the SSL or TLS-Protocol as per Section 5.1.3/5.1.4.
b) Authenticate itself using an OGSA Security Profile 2.0 – Secure SOAP Messaging (OGSA SP – SSM) compliant client-authenticated secure messaging
scheme.
|
|
Action: |
Update
Status changed from Open to Resolved
|
|
|