ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: IETF privacy policy - update

2010-07-15 14:09:42
from [todd glassey] [Permanent Link] 


At 3:36 PM +0100 7/15/10, Alissa Cooper wrote:

If you have specific ideas of other spots where the document over-promises, 
a list would be appreciated. I can take further clarifications back to the 
secretariat or whoever the responsible party is.

For me, the biggest over-promise is that someone reading the document might 
think that there is some remedy if the I* fails to live up to it. 

There is and its litigation. Also not having the policy also causes the
same liability and there is significant precedent to prove this... So it
doesnt matter from a liability standard whether the IETF puts this in
place or not, the IETF is liable already

The best part is the intentional destruction of evidence of anything is
very very expensive these days and the IETF needs to 'get' that the
people in this WG have no real interest in making the IETF legally
functional - they have the interest in providing as much smoke and
mirrors as it takes to say "we have a policy so go away"...

http://www.google.com/search?q=spoliation+sanctions&sourceid=ie7&rls=com.microsoft:en-us:IE-SearchBox&ie=&oe=

and the above search should give you what you need to see this is true...

Todd Glassey

The line between principles and promises in your document is quite unclear. 
Very specifically: I don't want the IETF to adopt your document if it opens 
up an avenue for an aggrieved participant (which, in the IETF, is anyone who 
knows how to subscribe to a mailing list, even this one) can cause damage to 
the IETF if the IETF doesn't meet the promise in that person's eyes.

If you feel that it is valuable to list privacy principles for an 
organization like the IETF, great. If you want the IETF to promise something 
that would cost us money or, possibly worse, much lost time from the I*, 
please don't move this forwards.

There are already many reasons why some people don't participate in the IETF. 
For some, the IETF is too informal for their comfort; those folks gravitate 
towards other SDOs who have more formal membership and rules. For some, the 
inability to rant freely on mailing lists without being barred is too high a 
bar. For some, If we lose a few people (and it does seem like a very few) for 
lack of a privacy policy that could be enforced by civil law or threat of 
civil lawsuits, that may be an acceptable risk.

--Paul Hoffman, Director
--VPN Consortium
_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf



_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [secdir] secdir review of draft-ietf-msec-ipsec-group-counter-modes, Sam Hartman
Next by Date:  Re: The IETF Data Tracker and non-IETF streams for RFCs, todd glassey
Previous by Thread:  Re: IETF privacy policy - update, Paul Hoffman
Next by Thread:  Re: IETF privacy policy - update, John Morris
Indexes:  [Date] [Thread] [Top] [All Lists]