John Morris wrote:
Unless I've missed something (which is certainly possible), the draft
may want to suggest how the OPES architecture will respond to the
following IAB consideration:
(3.1) Notification: The overall OPES framework needs to assist
content providers in detecting and responding to client-centric
actions by OPES intermediaries that are deemed inappropriate by the
content provider.
Section 2.6 of the draft should extend to include some form of
notification of the OPES action to the originating party *when
requested* by the originating party. Implicit notification mechanisms
would not scale, but a content provider should be able to explicitly
request notification in some form.
3.4 Privacy
Some data from data consumers is considered "private" or "sensitive",
and OPES processors must both advise the primary parties of the their
privacy policy and respect the policies of the primary parties. The
privacy information must be conveyed on a per-flow basis.
Especially as peer-to-peer technologies become more widely used, there
will likely be times that data providers also have private or sensitive
data. I suggest changing "data consumers is" to "data consumers or
providers may be."
I would agree with that change.
-Markus