IEF-RA 1.0 FTF Avatar
  1. OMG Issue

IEFRA_ — Add clarifying note that alternative implementations for email are possible

Open Closed All
  • Key: IEFRA_-24
  • Status: closed  
  • Source: Upham Security ( Frederick Hirsch)
  • Summary:

    For file retrieval I note that for extremely large files it could be inefficient to retrieve the entire file to parse out the SAC to get the meta data and then deny; would spec disallow a smarter file server that returns only the metadata (over the secure bus) as a first step , then only retrieve file if authorized? I believe answer is spec would not disallow this.

    This would be an implementation optimization and the flows are only examples

    Adding a note to this effect might be helpful, along with this optimization example for email.
  • Reported: IEF-RA 1.0b1 — Wed, 12 Jul 2017 17:09 GMT
  • Disposition: Deferred — IEF-RA 1.0
  • Disposition Summary:

    Readdress IEFRA-24

    Deferred until RTF
  • Updated: Tue, 8 Oct 2019 17:56 GMT