Clarifying the use of the term 'privacy' #95
Description
(2) Privacy
The term is defined in this doc in probably misleading. In "Design Goals", it currently says "will the expectations of each party with respect to usage of shared information be honored by the other parties?". I don't believe the ToIP stack or stacks directly tackle this broader problem. The TSP spec has taken a much more precise approach of defining privacy as "Metadata privacy" and its solution is to protect against tracking & correlations. (Note that content privacy is already named confidentiality) While this spec CAN have broader definitions because it should include capabilities introduced in the upper layers in trust tasks or trust applications, I still think the current phrasing is not accurate. I would bring it back to "Metadata privacy" and add a sentence to suggest that additional notions of privacy can be built with trust tasks and applications.