On Sep 29, 2011, at 1:01 PM, Marvin Addison wrote: > Why bother with authentication if the subsequent data is trivially > difficult to steal?
Web services answer to that would be, "because the subsequent data is just a public web post or calendar item - we are authenticating to keep spammers out, and provide attribution to the post". Thanks for the feedback on that. The XML return and the proxy tickets are good things to keep in mind. Best, Kim Kim Cary Chief Information Security Officer Pepperdine University <html><head></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><div>On Sep 29, 2011, at 1:01 PM, Marvin Addison wrote:</div><div><br class="Apple-interchange-newline"><blockquote type="cite"><span class="Apple-style-span" style="border-collapse: separate; font-family: Helvetica; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-align: -webkit-auto; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px; font-size: medium; ">Why bother with authentication if the subsequent data is trivially<br>difficult to steal?</span></blockquote><br></div><div>Web services answer to that would be, "because the subsequent data is just a public web post or calendar item - we are authenticating to keep spammers out, and provide attribution to the post".</div><br><div>Thanks for the feedback on that. The XML return and the proxy tickets are good things to keep in mind.</div><div><br></div><div><br></div><div><div>Best,</div><div>Kim</div><div><br></div><div><br></div><div>Kim Cary</div><div>Chief Information Security Officer</div><div>Pepperdine University</div><div><br></div></div></body></html> -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
