we need : Documentation Guidelines - a standard so that a deloyer can understand the security of the module (what priviliges do I need to run that module, what access rights do I need),
Testing Guidlines concerning security issues,
Third party development teams: need guidelines for developers. Third party teams are separate legal entities; if payed by EBSCO they transfer ownership to EBSCO when pushing code to the repository (the code remains open source under Apache license).
We should invite Jakob Skoczen to the Privacy SIG.
|interlibrary loan becomes less important. There is an increasing demand for direct borrowing. From a privacy perspective: what are the implications ? This requires that enough personal information is sent to the borrowing library.|
- Michael can invite Jakob to the SIG.