OASIS Open

LookingGlass

No

#1) The following statement is non-normative.

"Consumers MUST be aware of object-level data markings contained in the object_marking_refs field"

What does it mean to be aware? How can one be tested for being aware given that its a MUST. Suggest reworking this statement.

#2) The following statement needs work given that there are subsequent MUST statements.

"Data markings provide the ability for producers to convey to consumers how they may use and share the marked data that they receive"

Change the "they may use" to "they must use".

#3) The ordering precedence rules are the wrong order. Currently it states that the last rules has precedence over earlier rules. This is exact opposite of most rule matching systems like firewalls where the first rule to match has precedence. It also ensures that you dont have to check all the rules to then find the most appropriate rule. Implementers will likely have to reverse the rules to then do what I'm saying. Suggest the text is changed to state that the earlier rule has precedence over later rules.