This is down to a cost-benefit analysis. Does the current icap implementation cost more than the benefits of the security it brings? Or Would a little less security but more convenient functionality be better or worse? If better, would the costs of implementing that functionality be greater or less than benefits derived? A system which delivered the data to the client slower than the data received, and performed periodic checks as well as a check when data download complete may have a better cost-benefit trade-off. Inconvenient security can become insecure as users will look for ways to bypass the security. On 15 April 2014 12:54, Bjoern Meier <bjoern.meier@xxxxxxxxx> wrote: > hi, > > 2014-04-15 13:52 GMT+02:00 Antony Stone <Antony.Stone@xxxxxxxxxxxxxxxxxxxx>: > >> Surely you don't want users to get even the first parts of a downloaded file >> until it's been checked to make sure it's safe? > > right, my mistake. > > Greetings, > Björn
