[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [xacml] Draft BTG Profile
On Tue, 2010-11-23 at 17:06 +0000, David Chadwick wrote: > Dear List > > about a year ago we discussed the standardisation of the Break The Glass > response (see Seth Proctor's message of 17 Dec 2009) and decided that a > profile to standardise the BTG response would be useful. Unfortunately > Seth left Sun before we got around to writing it. > > Consequently Stijn Lievens and myself from Kent have produced a first > version (attached) for your consideration. I know its not in the correct > format yet, but we can fix that once the technical content has been agreed. > > Comments appreciated Hi David, I have some questions related to the proposed approach: 1.) You propose to introduce a new status code. Why not simply use Advice instead? It seems a bit superfluous to add new elements to the standard when there are suitable elements in the standard already. 2.) You propose to introduce a new element called <Consequences>. Why not use either Advice or Obligation with AttributeAssignments instead? General question: From the document you provided I cannot see the necessity for introducing new elements into the standard. Could you try to explain which functionality are you want to achieve that cannot be realized with the existing features of the standard? A small nitpick: In 2.3 you write: "... and if the response is Grant it will update the BTG state information ...". This should be "Permit" instead of "Grant". /Ludwig -- Ludwig Seitz, PhD | Axiomatics AB Training & Development | Skeppsbron 40 Phone: +46 (0)760 44 22 91 | SE-111 30 Stockholm Mail: ludwig@axiomatics.com | Sweden
This is a digitally signed message part
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]