W3C home > Mailing lists > Public > www-ws-arch@w3.org > February 2003

RE: Layers in the WSA (was RE: [Fwd: UN/CEFACT TMG Releases e-Business Architecture Technical Specification for Public Review])

From: Assaf Arkin <arkin@intalio.com>
Date: Sun, 16 Feb 2003 13:12:30 -0800
To: "Ugo Corda" <UCorda@SeeBeyond.com>
Cc: <www-ws-arch@w3.org>
Message-ID: <IGEJLEPAJBPHKACOOKHNMEEKDDAA.arkin@intalio.com>

Ugo,

I stand correct.

I read all the related specifications as one block. My initial impression,
perhaps because WS-Policy refers specifically to security and privacy, is
that it was designed primarily to address security. And I assume other
readers would fall in the same trap.

On the other hand, I also recieved the impression that WS-Policy is
"proposing a model which other specifications should follow when addressing
other problem spaces (e.g. transactions, choreography)".

I guess that a second reading of the spec in isolation would reveal even
more hidden treasures ;-)

arkin


> -----Original Message-----
> From: Ugo Corda [mailto:UCorda@SeeBeyond.com]
> Sent: Sunday, February 16, 2003 10:41 AM
> To: Assaf Arkin
> Cc: www-ws-arch@w3.org
> Subject: RE: Layers in the WSA (was RE: [Fwd: UN/CEFACT TMG Releases
> e-Business Architecture Technical Specification for Public Review])
>
>
> > WS-Policy only addresses security.
>
> I don't think this is correct. The spec Introduction says:
>
> "WS-Policy defines a policy statement to be a collection of one
> or more policy assertions. Some assertions specify traditional
> requirements and capabilities that will ultimately manifest on
> the wire (e.g., authentication scheme, transport protocol
> selection). Some assertions specify requirements and capabilities
> that have no wire manifestation yet are critical to proper
> service selection and usage (e.g., privacy policy, QoS characteristics)."
>
> Also, IBM says at [1]:
>
> "Although Policy Framework does add another mechanism to the
> security of Web services, the applicability of the policy
> framework is not reserved to the security domain alone. "
>
> And Microsoft says at [2]:
>
> "The Web Services Policy Framework (WS-Policy) provides a
> general-purpose model and corresponding syntax to describe and
> communicate the policies of a Web service."
>
> Ugo
>
>
> [1] http://www-106.ibm.com/developerworks/webservices/library/ws-polfram/
> [2]
> http://msdn.microsoft.com/webservices/understanding/gxa/default.as
> px?pull=/library/en-us/dnglobspec/html/wspolicyspecindex.asp
Received on Sunday, 16 February 2003 16:13:41 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 3 July 2007 12:25:14 GMT