OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

soa-rm message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [soa-rm] Security

Instead of
"Service policy may mandate security requirements to be met, and if they 
are not, interaction may be refused"


"Service policy may mandate security requirements, and if they are not 
met, service invocation/consumption may be refused"


"interaction" is not the best word since refusing to allow a service to 
be invoked is in itself an interaction.

Other thoughts:

A logical service policy is always present, even if the specific policy 
states you may access the service without presenting further credentials 
or tokens.  That, ipso facto, is a security policy, much the same as no 
explicit contract is still a contract.


Senior Standards Strategist - Adobe Systems, Inc. - http://www.adobe.com
Vice Chair - UN/CEFACT Bureau Plenary - http://www.unece.org/cefact/
Adobe Enterprise Developer Resources  - http://www.adobe.com/enterprise/developer/main.html

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]