At 2:04 AM -0400 10/17/06, Stephen Hanna wrote: > > Will we be able to meet these interoperability goals? Why or why not? > >Yes, we can. If we define a small set of standardized attributes >(OS and app version, AV status, etc.) and make them mandatory to >implement, Sorry, but doesn't "AV status" above refer to the existing, proprietary anti-virus systems? How does standardizing an attribute for carrying that help create a standardized understanding of what it means? Don't I still have to treat that as, essentially, a vendor attribute, since I have to know which vendor statuses cover which vulnerabilities? Or do you mean "there is some anti-virus software here"? Ted Hardie _______________________________________________ Ietf@xxxxxxxx https://www1.ietf.org/mailman/listinfo/ietf