now that I understand the multi-layered approach in SANER regarding profiling vs measure definition; the security considerations section should be more clear about the security assessment of SANER, vs the security assessment of any specific measure definition, vs choices an implementation may further make.
SANER core would stick with public declaration needing only anonymous read as a baseline
SANER would recommend careful design of measure definitions to avoid sensitive data
might SANER have specific definitions for the CDC and FEMA measure definition?
now that I understand the multi-layered approach in SANER regarding profiling vs measure definition; the security considerations section should be more clear about the security assessment of SANER, vs the security assessment of any specific measure definition, vs choices an implementation may further make.