以文本方式查看主题

-  计算机科学论坛  (http://bbs.xml.org.cn/index.asp)
--  『 XML安全 』  (http://bbs.xml.org.cn/list.asp?boardid=27)
----  Request for requirements:must XACML policy references match internal policy identifiers  (http://bbs.xml.org.cn/dispbbs.asp?boardid=27&rootid=&id=44802)

--  作者:菜籽
--  发布时间:4/3/2007 8:04:00 PM

--  Request for requirements:must XACML policy references match internal policy identifiers
The OASIS XACML Technical Committee is considering specifying the
requirements on the PolicyIdReference and PolicySetIdReference elements
more explicitly in XACML 3.0.  We would like feedback from XACML users
and developers regarding the impact of this change.

Proposed change:

     The value included in a Policy[Set]IdReference element SHALL
     match the value of the Policy[Set]Id XML attribute in the
     referenced policy.

The current specifications do not clearly state this as a requirement.

The XACML TC would like feedback from any implementers or users who
would be affected by this proposed change.  Clearly, there must be only
one Policy[Set] that can match any given Policy[Set]IdReference, but
there are at least two use cases for letting different values in
Policy[Set]IdReference instances refer to the same Policy[Set]: for
examples, see
http://lists.oasis-open.org/archives/xacml/200703/msg00076.html

If you depend on allowing policy references that do NOT match the
internal policy identifiers, please

1) Send us your use case(s).
2) Indicate whether your usage is in a research implementation or in a
commercial planned or production system.
3) Let us know how difficult it would be for your system to adapt to the
proposed change, if it were made.

You are also invited to send use cases where the proposed change would
simplify your usage of XACML.

W 3 C h i n a ( since 2003 ) 旗 下 站 点
苏ICP备05006046号《全国人大常委会关于维护互联网安全的决定》《计算机信息网络国际联网安全保护管理办法》
 7,753.906ms