OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

xacml message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]


Subject: RE: [xacml] AA04: 5.1 PolicySetId explanation clarification


Title: RE: [xacml] AA04: 5.1 PolicySetId explanation clarification

Anne - I was definitely uncomfortable with the original wording.  But, even your improvement leaves unnecessary room for misunderstanding.  Why not clearly state that it is the PAP's responsibility to ensure that no two policies visible to a PDP have the same identifier?  So, instead of "minimize the potential", why not say "eliminate the possibility"?

In practice, PDPs SHALL only accept policies from PAPs that agree to conform to a disjoint identifier assignment scheme and PAPs MUST adhere to their declared scheme.  Yes/No?

All the best.  Tim.

-----Original Message-----
From: Anne Anderson [mailto:Anne.Anderson@Sun.com]
Sent: Friday, October 11, 2002 3:57 PM
To: XACML TC
Subject: [xacml] AA04: 5.1 PolicySetId explanation clarification


Text location: Section 5.1 (PolicySet), explanation of
PolicySetId (p. 44, lines 1845-1848 in my copy of 18c)

Text change: Change "The party assigning the identifier MUST
minimize the potential of some other party reusing the same
identifier." to  "The party assigning the identifier MUST
minimize the potential of some other party re-using the same
identifier within the scope of the PDPs that may use or reference
that identifier."

Rationale: "How unique does it have to be, Anne?"  "As unique as
necessary, Joe."
--
Anne H. Anderson             Email: Anne.Anderson@Sun.COM
Sun Microsystems Laboratories
1 Network Drive,UBUR02-311     Tel: 781/442-0928
Burlington, MA 01803-0902 USA  Fax: 781/442-1692


----------------------------------------------------------------
To subscribe or unsubscribe from this elist use the subscription
manager: <http://lists.oasis-open.org/ob/adm.pl>



[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]


Powered by eList eXpress LLC