RE: [xacml-users] Help on ResourceConent!

["Balaji Kannadassan" <balajika@nortel.com>]

Hi Roland!

   It wasn't specified anywhere since you said in standard xml its not
implemented assume its 1.0v is standard. Sorry if I have confused you,
So on whole it's the difference between the usage of AttributeSelector
and AttributeDesignator. So if I am using Attribute Designator hyperlink
or location would suffice rt ?.  Since in the example of DoB they use
Attribute Selector prefetched details are placed.

Other Experts >> Please do help me in my understanding of the request
flow on the XACML Policy architecture ?. 
			Is my understanding rt as stated below  on
PDP/PEP/PAP/PIP ?

Thanks
Balaji Kamal Kannadassan

-----Original Message-----
From: Roland Illig [mailto:roland.illig@gmx.de] 
Sent: Monday, November 03, 2008 2:08 PM
To: Kannadassan, Balaji (AMR:8826)
Cc: xacml-users@lists.oasis-open.org
Subject: Re: [xacml-users] Help on ResourceConent!

Balaji Kannadassan schrieb:
> Hi Roland!
> 
>     As you have said said that only embedded details can be read by 
> 1.0v, had a doubt on how are these values prefetched, so is it that

I meant: the <AttributeSelector> can only search inside the <Request>
XML that is provided to the PDP. I know that the <*AttributeDesignator>s
can get arbitrary information.

>         a) PEP send that the detail of the doctor who wanted to read 
> bart's DOB
>         b) Context Handler will prefetch DOB details via PIP and place

> it in the Resource Content and push it across to PDP.
>         c) Now PDP has all these prefetched detail
>         d) PDP takes a decision on what to with operation the person 
> wants to do via PAP

I don't know that part of XACML very well, so I cannot say definitely
how it works.

> So in 1.0 PDP didn't had the provision to delve into just the 
> hyperlink for the record provided. In 2.0 there is an enhancement for 
> the same to get the details from the hyperlink.

Oh, I didn't know that. Where is it defined?

Roland