Security considerations update

davidrecordon · Mar 19, 2010 · 924add8 · 924add8
1 parent 8889861
commit 924add8
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/OAuth2.xml b/OAuth2.xml
@@ -667,7 +667,7 @@ oauth_client_identifier=s6BhdRkqt3&oauth_client_secret=8eSEIpnqmM&oauth_refresh_
         </section>
 
         <section title="Security Considerations">
-            <t>TODO: I'm the wrong person to write this section.</t>
+            <t>TODO: David is the wrong person to write this section. Should definitely cover why device profiles don't have client secrets (hard to trust them to keep secrets and will probabally use custom ways to auth based on the device and if it has TPM.)</t>
         </section>
     </middle>