xml-dev - Re: [xml-dev] Re: Cookies at XML Europe 2004 -- Call for Participation

Re: [xml-dev] Re: Cookies at XML Europe 2004 -- Call for Participation

[ Lists Home | Date Index | Thread Index ]

To: Elliotte Rusty Harold <elharo@metalab.unc.edu>
Subject: Re: [xml-dev] Re: Cookies at XML Europe 2004 -- Call for Participation
From: Rich Salz <rsalz@datapower.com>
Date: Wed, 7 Jan 2004 08:02:32 -0500 (EST)
Cc: "xml-dev@lists.xml.org" <xml-dev@lists.xml.org>
In-reply-to: <p0601020cbc21a68a68b5@[192.168.254.4]>

> Just to be clear, REST has no objection to running over SSL. REST
> defines a use pattern for application layer protocols. It is
> transport layer agnostic.

I know.  I was merely pointing out that REST lets the lower layers
do things that it won't.  Such as maintaining state on both sides
of the connection which is (all together now) a requirement for good
security.

	/r$

--
Rich Salz                  Chief Security Architect
DataPower Technology       http://www.datapower.com
XS40 XML Security Gateway  http://www.datapower.com/products/xs40.html
XML Security Overview      http://www.datapower.com/xmldev/xmlsecurity.html

Follow-Ups:
- Re: [xml-dev] Re: Cookies at XML Europe 2004 -- Call forParticipation
  - From: Elliotte Rusty Harold <elharo@metalab.unc.edu>

References:
- Re: [xml-dev] Re: Cookies at XML Europe 2004 -- Call forParticipation
  - From: Elliotte Rusty Harold <elharo@metalab.unc.edu>

Prev by Date: Re: [xml-dev] Re: Cookies at XML Europe 2004 -- Call forParticipation
Next by Date: RE: [xml-dev] wacky XML
Previous by thread: Re: [xml-dev] Re: Cookies at XML Europe 2004 -- Call forParticipation
Next by thread: Re: [xml-dev] Re: Cookies at XML Europe 2004 -- Call forParticipation
Index(es):
- Date
- Thread