OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

ws-sx message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [ws-sx] Issue 66: Security Policy Usecases

Comments on Policy usecase document from Gudge

Gudge 

> -----Original Message-----
> From: Hal Lockhart [mailto:hlockhar@bea.com] 
> Sent: 26 June 2006 22:00
> To: Ashok Malhotra
> Cc: ws-sx@lists.oasis-open.org; Symon Chang
> Subject: FW: [ws-sx] Issue 66: Security Policy Usecases
> 
> Comments on the Policy usecase document from Symon Chang (now of BEA)
> 
> Hal
> 
> -----Original Message-----
> From: Symon Chang 
> Sent: Monday, June 26, 2006 3:30 PM
> To: Jong Lee; Hal Lockhart
> Subject: RE: [ws-sx] Issue 66: Security Policy Usecases
> 
> Jong and Hal, 
> 
> The XML samples in the attached document have some syntax errors.
> Attached is my update of the document that has the fixes of syntax
> errors with track changes is turn-on. Can you please take it back to
> WS-SX-TC to have those typos be fixed? 
> 
> In addition, I have question on the section 2.3.5 and 2.3.8 on these
> SAML1.1/2.0 Use cases. Why these two cases use SymmetricBinding (Line
> 940 and line 1073) instead of AsymmetricBinding? The example on WSS1.0
> SAML10, on the section 2.3.2 and section 2.3.4 Use Cases, use
> AsymmetricBinding (line 735 and line 861). I just don't understand the
> reason of changing AsymmetricBinding to SymmetricBinding from 
> WSS 1.0 to
> WSS 1.1. 
> Can you ask the authors of this document for the reason? 
> 
> Thanks for your help in advance. 
> 
> 
> 
> Symon Chang 
>   
> 
> -----Original Message-----
> From: Ashok Malhotra [mailto:ashok.malhotra@oracle.com] 
> Sent: Thursday, June 15, 2006 11:13 AM
> To: ws-sx@lists.oasis-open.org
> Cc: Prateek Mishra; Mischkinsky,Jeff
> Subject: [ws-sx] Issue 66: Security Policy Usecases
> 
> I'm attaching a document with a number of what we feel are typical
> Security Policy usecases along with sample Policies.
> 
> The first thing to do is to discuss whether we need more or less
> usecases.
> My guess is we need more but we also don't need a 100 page document.
> 
> Then we need to decide where this fits along with the other WS-SX
> deliverables.
> 
> All the best, Ashok
>  
>

securitypolicy-usecases-01.mjg.doc

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]