Non-normative security and privacy unacceptable

GlobalPlatform / WebApis-for-SE

Open source Apis to access a Secure Element from a Web application

Apache License 2.0

18 stars 5 forks source link

Non-normative security and privacy unacceptable #27

Closed hchavers closed 8 years ago

hchavers commented 8 years ago

Comments from Trusted Computing Group - Item # 8

Section: 4. Security and Privacy Considerations

Comment: Re “This section is non-normative.” -

Proposed Resolution: It's unacceptable to make Security and Privacy Considerations non-normative - they MUST be normative or should be omitted entirely as useless.

opoto commented 8 years ago

Security and Privacy are addressed throughout the whole document, they are the main focus of this specification. However section 4 is non-normative because it only contains explanatory information to help readers to better understand the scope of this specification. It answers questions that were raised by previous reviewers of this specification.