OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

xacml message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Subject: Re: [xacml] thought about simple rules


I think to make the target element optional is reasonable. Another case
would be if the policy only cares for the time of the access, there is no
need to specify parameters in the target element.

Michiharu

IBM Tokyo Research Laboratory, Internet Technology
Tel. +81 (46) 215-4642   Fax +81 (46) 273-7428




                                                                                                                                       
                      Anne Anderson                                                                                                    
                      <Anne.Anderson@Su        To:       XACML TC <xacml@lists.oasis-open.org>                                         
                      n.com>                   cc:                                                                                     
                                               Subject:  [xacml] thought about simple rules                                            
                      2002/07/09 22:20                                                                                                 
                      Please respond to                                                                                                
                      Anne.Anderson                                                                                                    
                                                                                                                                       
                                                                                                                                       



One of my colleagues suggests we make the "Target" element
optional in a "Rule".  What do people think?

-Anne
------- start of forwarded message -------
To: anne.anderson@sun.com
Subject: thought about simple rules
Date: Mon, 8 Jul 2002 16:56:21 -0400


In the case of policies that have only one rule in the ruleset, it seems to
me that the common case will be that the target in the policy and the
target
in the rule will be the same (indeed, there are examples of this in the
spec).
I was thinking that it might help to compact policies if the spec allowed
(for example) for the target in a rule to be optional, and in that case it
would inherit the rule in the policy. It seems like something along those
lines would help scenarios where there are lots of policy files, but each
file contained (essentially) only one rule.

I'm just concerned because I'm starting to think about how big these policy
files will be, and it's fairly clear that there's a lot of repeated stuff
that will make relatively small policies use up lots of bits.


seth
------- end of forwarded message -------
--
Anne H. Anderson             Email: Anne.Anderson@Sun.COM
Sun Microsystems Laboratories
1 Network Drive,UBUR02-311     Tel: 781/442-0928
Burlington, MA 01803-0902 USA  Fax: 781/442-1692


----------------------------------------------------------------
To subscribe or unsubscribe from this elist use the subscription
manager: <http://lists.oasis-open.org/ob/adm.pl>

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Powered by eList eXpress LLC