[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [xacml] Groups - Proposed response to Plasma uploaded
My comment is intended to support the use of URIs/URNs as policy references in their proposed architecture.
How about this:
The use of URIs/URNs has been shown to be an effective way of representing values in a request context, particularly when the values are fairly static. This would be the preferred structure for passing policy references.
In this section:
By name. This is where a reference to the policy is directly associated with the data. e.g. a URI or a URN which identifies the policy to be enforced or points to where the policy is published. For example with S/MIME the ESS label identifies the applicable policy by an OID. When an access request is made to the data, the PDP finds the policy based on the identifier and then compares the access request to the referenced policy. (p. 38)
The use of URIs/URNs has been shown to be an effective way of representing values in a request context, particularly when the values are fairly static.
It’s unclear to me what this comment is about. Is the comment providing support for the original text, or is the purpose of the comment to suggest that URI/URNs should be used instead of S/MIME?
Other than that, the rest of the doc looks good and makes sense.
Product Architect | | Quest Software - Now including the people and products of BiTKOO | www.quest.com
From: email@example.com [mailto:firstname.lastname@example.org] On Behalf Of John Tolbert