[Design] Re: Calendar Ideas

[Wayne Pierce]

  > This raises all sorts of fundamental questions about P2P connectivity,
  > and security and permissions.  How much have these areas been thought
  > through?

For connectivity just make sure you can roll back any transactions that
do not complete.  Perhaps a basic XML-RPC server or something similar
over Jabber to allow for remote entry of data.

Two parts to security for consideration are authentication and
authorization.  For authorization, you could define roles, similar to
Zope.  Most of the roles would be already created but someone would be
able to add additional roles if desired.

To determine who the person is, or authentication, why not use GPG
signatures?  For the encrypted traffice between hosts you are going to
need some type of key, might as well generate a GPG keypair.  Then you
can use the same keypair to digitally sign and encrypt emails.

Wayne
-- 
Wayne Pierce
web: http://www.mishre.com
email: wayne@mishre.com

"What you need to know."