[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [wsn] XACML - Integration
Peter,
It is probably more of an integration exercise to include XACML as policy enforcement within the WSN environment.
Let's focus on putting something in the primer about the integration points.
The possible integration points could be:
1. When there is a reference (consumer reference, etc...) we could use the wsa:endpoint as the integration.
2. The subscription policy with the XACML access policy.
3. The subscription reference as WS-Resource with the Resource within XACML.
- I added a compliant on making the XACML resource to support WS-Resource
4. The Topic with a XACML target, need a mapping for this to keep loose-coupling
In general since the subscription is a WS-Resource and the reference related elements follow the WS-Address, it seems the issue is for XACML to align with WS-Resource and WS-Address within their specs.
Just thought instead of flushing out to much detail on the policy definitions, WSN could use XACML for the policy asnd security definitions refer to those specs.
Let me know if you want more detail around this.
Thanks,
Dan
-----Original Message-----
From: Peter Niblett [mailto:peter_niblett@uk.ibm.com]
Sent: Monday, September 26, 2005 4:03 AM
To: marchadr@wellsfargo.com
Cc: wsn@lists.oasis-open.org
Subject: Re: [wsn] XACML - Integration
Daniel
We discussed your posting at the Face/Face meeting earlier this month.
Could you provide more details on what you had in mind?
We would not wish to mandate the use of XACML, however it there was
something in WSN that prevented us from composing with it then we should
examine how to fix that.
Are you suggesting some additional material, i.e. "if you wish to compose
with XACML, do it like this". If so would that require normative
specification for interoperability, or is it just something that we could
document in the primer as "best practices"?
Regards
Peter Niblett
marchadr@wellsfar
go.com
To
29/08/2005 17:25 wsn@lists.oasis-open.org
cc
Subject
[wsn] XACML - Integration
Daniel Marchant added the following comment to the WSN-Policy.ppt document
in the OASIS Web Services Notification (WSN) TC Group.
Should there be an incorporation of the XACML specification?
Possibly extend the elements defined in the XACML specification to apply
Topic and Subscription as resources or targets within the XACML spec.
View Document Details and Comments:
http://www.oasis-open.org/apps/org/workgroup/wsn/document.php?document_id=9867
Download Document:
http://www.oasis-open.org/apps/org/workgroup/wsn/download.php/9867/WSN-Policy.ppt
PLEASE NOTE: If the above links do not work for you, your email
application
may be breaking the link into two pieces. You may be able to copy and
paste
the entire link address into the address field of your web browser.
- Administration
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]