OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

kmip-comment message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: ACL and Operational Policy

Hi,

 

I have seen the Access Control draft for KMIL V1.1.

 

The draft defines two categories of Permissions.

 

For a Role

                [1] Role Permissions.

                [2] Object Permissions.

Role Permissions define: Create, Register, Template Create, and Template Register.

Object Permissions define: Admin, Operate, Derive, get_attributes, get, get_wrapped and wrap.

 

These object permissions define the operations possible on managed objects which operational policy also does.

 

How are the ACL Object Permission and Operational Policy different?

 

Please help me understand this concept.

 

Thanks in advance…

 

 

 

Trinath Somanchi,

trinath.somanchi@freescale.com

 

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]