- From: Toufic Boubez via cvs-syncmail <cvsmail@w3.org>
- Date: Sat, 07 Oct 2006 21:19:39 +0000
- To: public-ws-policy-eds@w3.org
Update of /sources/public/2006/ws/policy
In directory hutz:/tmp/cvs-serv6950
Modified Files:
ws-policy-framework.xml ws-policy-framework.html
Log Message:
Completed action item:
http://www.w3.org/2005/06/tracker/wspolicyeds/actions/47
Issue 3602 Resolution - The absence of an assertion should not mean that the behavior is "explicitly prohibited".
Index: ws-policy-framework.xml
===================================================================
RCS file: /sources/public/2006/ws/policy/ws-policy-framework.xml,v
retrieving revision 1.62
retrieving revision 1.63
diff -u -d -r1.62 -r1.63
--- ws-policy-framework.xml 4 Oct 2006 22:20:33 -0000 1.62
+++ ws-policy-framework.xml 7 Oct 2006 21:19:36 -0000 1.63
@@ -415,10 +415,11 @@
<termdef id="policy_alternative_vocabulary" term="policy alternative vocabulary">A <term>policy alternative vocabulary</term> is the set of
all <termref def='policy_assertion_type'>policy assertion
types</termref> within the <termref def='policy_alternative'>policy
- alternative</termref></termdef>. An assertion whose type
- is part of the policy's vocabulary but is not included in
- an alternative is explicitly prohibited by the
- alternative.</p>
+ alternative</termref></termdef>.
+ When an assertion whose type is part of the policy's vocabulary is not included
+ in a policy alternative, the policy alternative without the assertion type
+ indicates that the assertion will not be applied in the context of the attached
+ policy subject. </p>
<p>Assertions within an alternative are not ordered, and
thus aspects such as the order in which behaviors
@@ -2000,6 +2001,13 @@
<loc href="http://www.w3.org/2005/06/tracker/wspolicyeds/actions/10">10</loc> Recast text at the beg of section to describe what's upcoming in the subsections.
</td>
</tr>
+ <tr>
+ <td>20061007</td>
+ <td>TIB</td>
+ <td>Completed action item:
+ <loc href="http://www.w3.org/2005/06/tracker/wspolicyeds/actions/47">47</loc> Issue 3602 Resolution - The absence of an assertion should not mean that the behavior is "explicitly prohibited".
+ </td>
+ </tr>
</tbody>
</table>
</inform-div1>
Index: ws-policy-framework.html
===================================================================
RCS file: /sources/public/2006/ws/policy/ws-policy-framework.html,v
retrieving revision 1.46
retrieving revision 1.47
diff -u -d -r1.46 -r1.47
--- ws-policy-framework.html 4 Oct 2006 22:20:35 -0000 1.46
+++ ws-policy-framework.html 7 Oct 2006 21:19:36 -0000 1.47
@@ -1,4 +1,4 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN""http://www.w3.org/TR/html4/loose.dtd">
<html lang="en-US"><head><META http-equiv="Content-Type" content="text/html; charset=utf-8"><title>Web Services Policy 1.5 - Framework</title><style type="text/css">
code { font-family: monospace; }
@@ -47,7 +47,7 @@
div.exampleWrapper { margin: 4px }
div.exampleHeader { font-weight: bold;
margin: 4px}
-</style><link type="text/css" rel="stylesheet" href="http://www.w3.org/StyleSheets/TR/base.css"><link href="#contents" rel="contents"></head><body>
+</style><link rel="stylesheet" type="text/css" href="http://www.w3.org/StyleSheets/TR/base.css"><link rel="contents" href="#contents"></head><body>
<div class="head">
<h1>Web Services Policy 1.5 - Framework</h1>
<h2>Editors' copy $Date$ @@ @@@@ @@@@</h2><dl><dt>This version:</dt><dd>
@@ -73,7 +73,7 @@
no official standing.</strong></p><p></p></div>
<hr><div class="toc">
<h2><a name="contents">Table of Contents</a></h2><p class="toc">1. <a href="#tocRange">Introduction</a><br> 1.1 <a href="#Example">Example</a><br>2. <a href="#Notation_Terminilogy">Notations and Terminology</a><br> 2.1 <a href="#Notational_Conventions">Notational Conventions</a><br> 2.2 <a href="#Extensibility">Extensibility</a><br> 2.3 <a href="#XML_Namespaces">XML Namespaces</a><br> 2.4 <a href="#Terminology">Terminology</a><br>3. <a href="#Policy_Model">Policy Model</a><br> 3.1 <a href="#rPolicy_Assertion">Policy Assertion</a><br> 3.2 <a href="#rPolicy_Alternative">Policy Alternative</a><br> 3.3 <a href="#rPolicy">Policy</a><br> 3.4 <a href="#Web_services">Policies of Entities in a Web Services Based System</a><br>4. <a href="#rPolicy_Expression">Policy Expression</a><br> 4.1 < href="#Normal_Form_Policy_Expression">Normal Form Policy Expression</a><br> 4.2 <a href="#Policy_Identification">Policy Identification</a><br> 4.3 <a href="#Compact_Policy_Expression">Compact Policy Expression</a><br> 4.3.1 <a href="#Optional_Policy_Assertions">Optional Policy Assertions</a><br> 4.3.2 <a href="#Policy_Assertion_Nesting">Policy Assertion Nesting</a><br> 4.3.3 <a href="#Policy_Operators">Policy Operators</a><br> 4.3.4 <a href="#Policy_References">Policy References</a><br> 4.3.5 <a href="#Policy_Inclusion">Policy Inclusion</a><br> 4.4 <a href="#Policy_Intersection">Policy Intersection</a><br>5. <a href="#Security_Considerations">Security Considerations</a><br> 5.1 <a href"#information-disclosure-threats">Information Disclosure Threats</a><br> 5.2 <a href="#spoofing-and-tampering-threats">Spoofing and Tampering Threats</a><br> 5.3 <a href="#downgrade-threats">Downgrade Threats</a><br> 5.4 <a href="#repudiation-threats">Repudiation Threats</a><br> 5.5 <a href="#denial-of-service-threats">Denial of Service Threats</a><br> 5.6 <a href="#general-xml-considerations">General XML Considerations</a><br>6. <a href="#Conformance">Conformance</a><br></p>
-<h3><a id="appendix" name="appendix">Appendices</a></h3><p class="toc">A. <a href="#References">References</a><br> A.1 <a href="#Normative-References">Normative References</a><br> A.2 <a href="#Informative-References">Other References</a><br>B. <a href="#acknowledgments">Acknowledgements</a> (Non-Normative)<br>C. <a href="#change-description">Changes in this Version of the Document</a> (Non-Normative)<br>D. <a href="#change-log">Web Services Policy 1.5 - Framework Change Log</a> (Non-Normative)<br></p></div><hr><div class="body">
+<h3><a name="appendix" id="appendix">Appendices</a></h3><p class="toc">A. <a href="#References">References</a><br> A.1 <a href="#Normative-References">Normative References</a><br> A.2 <a href="#Informative-References">Other References</a><br>B. <a href="#acknowledgments">Acknowledgements</a> (Non-Normative)<br>C. <a href="#change-description">Changes in this Version of the Document</a> (Non-Normative)<br>D. <a href="#change-log">Web Services Policy 1.5 - Framework Change Log</a> (Non-Normative)<br></p></div><hr><div class="body">
<div class="div1">
<h2><a name="tocRange"></a>1. Introduction</h2>
@@ -83,13 +83,13 @@
entities in a Web services-based system.
</p>
- <p>[<a title="policy" name="policy">Definition</a>: A <b>policy</b> is a collection of
+ <p>[<a name="policy" title="policy">Definition</a>: A <b>policy</b> is a collection of
<a title="policy alternative" href="#policy_alternative">policy alternatives</a>, ]
- where [<a title="policy alternative" name="policy_alternative">Definition</a>: a <b>policy alternative</b>
+ where [<a name="policy_alternative" title="policy alternative">Definition</a>: a <b>policy alternative</b>
is a collection of <a title="policy assertion" href="#policy_assertion">policy assertions</a>.]
- [<a title="policy assertion" name="policy_assertion">Definition</a>: A <b>policy assertion</b>
+ [<a name="policy_assertion" title="policy assertion">Definition</a>: A <b>policy assertion</b>
represents an individual requirement, capability, or other property of a behavior.]
- [<a title="policy expression" name="policy_expression">Definition</a>: A <b>policy expression</b>
+ [<a name="policy_expression" title="policy expression">Definition</a>: A <b>policy expression</b>
is an XML Infoset representation of a <a title="policy" href="#policy">policy</a>,
either in a normal form or in an equivalent compact form.] Some policy assertions
specify traditional requirements and capabilities that
@@ -103,12 +103,12 @@
<p>Web Services Policy 1.5 - Framework does not specify policy discovery or
<a title="policy attachment" href="#policy_attachment">policy attachment</a>.
- [<a title="policy attachment" name="policy_attachment">Definition</a>: A
+ [<a name="policy_attachment" title="policy attachment">Definition</a>: A
<b>policy attachment</b> is a mechanism for associating
<a title="policy" href="#policy">policy</a> with one or more <a title="policy scope" href="#policy_scope">policy scopes</a>.]
- [<a title="policy scope" name="policy_scope">Definition</a>: A <b>policy scope</b> is a collection of
+ [<a name="policy_scope" title="policy scope">Definition</a>: A <b>policy scope</b> is a collection of
<a title="policy subject" href="#policy_subject">policy subjects</a> to which a policy may apply.]
- [<a title="policy subject" name="policy_subject">Definition</a>: A <b>policy subject</b> is an entity
+ [<a name="policy_subject" title="policy subject">Definition</a>: A <b>policy subject</b> is an entity
(e.g., an endpoint, message, resource, interaction) with which a
<a title="policy" href="#policy">policy</a> can be associated. ]
@@ -128,7 +128,7 @@
assertions defined in WS-SecurityPolicy [<cite><a href="#WS-SecurityPolicy">WS-SecurityPolicy</a></cite>]:</p>
<div class="exampleOuter">
- <p class="exampleHead" style="text-align: left"><a name="ex-wsp-use-security-assertations"></a><i><span>Example 1-1. </span>Use of Web Services Policy with security policy assertions.</i></p>
+ <p style="text-align: left" class="exampleHead"><a name="ex-wsp-use-security-assertations"></a><i><span>Example 1-1. </span>Use of Web Services Policy with security policy assertions.</i></p>
<div class="exampleInner"><pre>
(01) <wsp:Policy
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"
@@ -357,6 +357,18 @@
<dt class="label">
+ <a href="#policy_alternative_vocabulary">policy alternative vocabulary</a>
+ </dt>
+ <dd>
+ <p>A <b>policy alternative vocabulary</b> is the set of
+ all <a title="policy assertion type" href="#policy_assertion_type">policy assertion
+ types</a> within the <a title="policy alternative" href="#policy_alternative">policy
+ alternative</a>
+ </p>
+ </dd>
+
+
+ <dt class="label">
<a href="#policy_assertion">policy assertion</a>
</dt>
<dd>
@@ -456,7 +468,7 @@
type</a> is identified only by the XML Infoset <strong>[namespace name]</strong> and <strong>[local name]</strong> properties (that
is, the qualified name or QName) of the root Element
Information Item representing the assertion.
- [<a title="policy assertion type" name="policy_assertion_type">Definition</a>: A <b>policy assertion type</b>
+ [<a name="policy_assertion_type" title="policy assertion type">Definition</a>: A <b>policy assertion type</b>
represents a class of <a title="policy assertion" href="#policy_assertion">policy assertions</a> and implies a
schema for the assertion and assertion-specific semantics.]
Assertions of
@@ -476,7 +488,7 @@
property. Such properties are <a title="policy assertion parameter" href="#policy_assertion_parameter">policy assertion parameters</a>
and <span class="rfc2119">MAY</span> be used to
parameterize the behavior indicated by the assertion.
- [<a title="policy assertion parameter" name="policy_assertion_parameter">Definition</a>: A <b>policy assertion parameter</b>
+ [<a name="policy_assertion_parameter" title="policy assertion parameter">Definition</a>: A <b>policy assertion parameter</b>
qualifies the behavior indicated by a <a title="policy assertion" href="#policy_assertion">policy assertion</a>.]
For example, an
assertion identifying support for a specific reliable
@@ -505,15 +517,16 @@
indicates behaviors implied by those, and only those
assertions. </p>
- <p> [<a title="policy vocabulary" name="policy_vocabulary">Definition</a>: A <b>policy vocabulary</b> is the set of all
+ <p> [<a name="policy_vocabulary" title="policy vocabulary">Definition</a>: A <b>policy vocabulary</b> is the set of all
<a title="policy assertion type" href="#policy_assertion_type">policy assertion types</a> used in a policy.]
- [<a title="policy alternative vocabulary" name="policy_alternative_vocabulary">Definition</a>: A <b>policy alternative vocabulary</b> is the set of
+ [<a name="policy_alternative_vocabulary" title="policy alternative vocabulary">Definition</a>: A <b>policy alternative vocabulary</b> is the set of
all <a title="policy assertion type" href="#policy_assertion_type">policy assertion
types</a> within the <a title="policy alternative" href="#policy_alternative">policy
- alternative</a>]. An assertion whose type
- is part of the policy's vocabulary but is not included in
- an alternative is explicitly prohibited by the
- alternative.</p>
+ alternative</a>].
+ When an assertion whose type is part of the policy's vocabulary is not included
+ in a policy alternative, the policy alternative without the assertion type
+ indicates that the assertion will not be applied in the context of the attached
+ policy subject. </p>
<p>Assertions within an alternative are not ordered, and
thus aspects such as the order in which behaviors
@@ -863,7 +876,7 @@
<h4><a name="Policy_Assertion_Nesting"></a>4.3.2 Policy Assertion Nesting</h4>
<p>Any <a title="policy assertion" href="#policy_assertion">policy assertion</a>
-<span class="rfc2119">MAY</span> contain a <a title="policy expression" href="#policy_expression">policy expression</a>. [<a title="nested policy expression" name="nested_policy_expression">Definition</a>: A <b>nested policy expression</b> is a <a title="policy expression" href="#policy_expression">policy expression</a> that is an Element Information Item in the <strong>[children]</strong> property of a <a title="policy assertion" href="#policy_assertion">policy assertion</a>.] The schema
+<span class="rfc2119">MAY</span> contain a <a title="policy expression" href="#policy_expression">policy expression</a>. [<a name="nested_policy_expression" title="nested policy expression">Definition</a>: A <b>nested policy expression</b> is a <a title="policy expression" href="#policy_expression">policy expression</a> that is an Element Information Item in the <strong>[children]</strong> property of a <a title="policy assertion" href="#policy_assertion">policy assertion</a>.] The schema
outline for a <a title="nested policy expression" href="#nested_policy_expression">nested policy expression</a> is:</p>
<div class="exampleInner"><pre><<em>Assertion</em> …>
@@ -1474,7 +1487,7 @@
policy alternatives, number of assertions in an alternative, depth of nested policy
expressions, etc.</p>
<div class="exampleOuter">
- <p class="exampleHead" style="text-align: left"><a name="ex-chained-policy-reference-elements"></a><i><span>Example 5-1. </span>Chained Policy Reference Elements</i></p>
+ <p style="text-align: left" class="exampleHead"><a name="ex-chained-policy-reference-elements"></a><i><span>Example 5-1. </span>Chained Policy Reference Elements</i></p>
<div class="exampleInner"><pre><Policy wsu:Id="p1">
<PolicyReference URI="#p2"/ >
<PolicyReference URI="#p2"/>
@@ -2105,6 +2118,13 @@
<a href="http://www.w3.org/2005/06/tracker/wspolicyeds/actions/10">10</a> Recast text at the beg of section to describe what's upcoming in the subsections.
</td>
</tr>
+ <tr>
+ <td rowspan="1" colspan="1">20061007</td>
+ <td rowspan="1" colspan="1">TIB</td>
+ <td rowspan="1" colspan="1">Completed action item:
+ <a href="http://www.w3.org/2005/06/tracker/wspolicyeds/actions/47">47</a> Issue 3602 Resolution - The absence of an assertion should not mean that the behavior is "explicitly prohibited".
+ </td>
+ </tr>
</tbody>
</table><br>
</div>
Received on Saturday, 7 October 2006 21:19:46 UTC