Moshe Zioni
Moshe Zioni
Good points, @david-a-wheeler . I like your take on making things simpler to digest in the sense of using a more simple terms. If we choose to use 'requirements' it...
@david-a-wheeler looking forward for further insights and discussion.
External information strikes a good balance, indeed, imo as well. I am partial about the second comment, but still a solid point on not to imply waterfall - the thing...
I agree it is too wordy. External information might reflect too passive influences while we don't want to lose sight of the ill intended and errornous influencers that can pose...
Great, landed on "External information" then. I will proceed with appropriate changes PRs.
Imo, we should make the distinction between introducing bad code to be influenced/biased towards a design decision that affects security/integrity downstream. as for requirements - i was thinking of a...
Agree, I wanted to make this type of comment and link following yesterday's WG discussion, you beated me to it @MarkLodato 😄 Thanks
expand zero-trust notion over all steps, including originated geo-location, network, sources, users, providers.
@mlieberman85 agree with this notion, this was my original idea as well. "All transitive steps" is, first of all, too broad and not giving specificity which is much needed but...
Fair point on L2 and adding anything there will increase the barrier to entry, I personally feel that you are right there, @MarkLodato . My original thought was that by...