security considerations recognizing measure definitions

[JohnMoehrke]

now that I understand the multi-layered approach in SANER regarding profiling vs measure definition; the security considerations section should be more clear about the security assessment of SANER, vs the security assessment of any specific measure definition, vs choices an implementation may further make.

• SANER core would stick with public declaration needing only anonymous read as a baseline
• SANER would recommend careful design of measure definitions to avoid sensitive data
• might SANER have specific definitions for the CDC and FEMA measure definition?

[JohnMoehrke]

removed my assignment as I am not sure if this is still an issue or how I would determine that.