I agree with Gary. The end customer in a corporate environment is likely
the corporation and employees should know that when they use the Web as part
of their job.
-----Original Message-----
From: Tomlinson, Gary [mailto:gary(_dot_)tomlinson(_at_)cacheflow(_dot_)com]
Sent: Monday, August 20, 2001 10:59 AM
To: Weisong Shi; Carr, Wayne
Cc: 'ietf-openproxy(_at_)imc(_dot_)org'
Subject: RE: corrected - Suggested OPES Requirements for Integrity,
Priva cy a nd Security
On Thursday, August 16, 2001 @7:15 PM -0800 Weisong Shi wrote:
Wayne,
Assume one company has 100 users. The company has subscribed a
request/response checking service on all the requests sent
by these 100
users. This service is not
requested by either Content Provider or End user. So, does
this violate
the OPES requirements for Privacy and Integrity?
-Weisong
What is meant by company here? Is it an enterprise who is
subscribing its
employees or an ISP? If it is an ISP, then I would say there
is a violation
of Privacy and Integrity. If it is an enterprise, it is a
little bit more
complicated. There is a great deal of precedence that
enterprises in many
jurisdictions around the world are allowed to monitor and filter the
activities
of their employees. If this is the case for your example,
then IMHO, no it
would not be a violation.
My .02.
Gary