2006/ws/policy ws-policy-framework.xml,1.62,1.63 ws-policy-framework.html,1.46,1.47

Update of /sources/public/2006/ws/policy
In directory hutz:/tmp/cvs-serv6950

Modified Files:
	ws-policy-framework.xml ws-policy-framework.html 
Log Message:
Completed action item:
http://www.w3.org/2005/06/tracker/wspolicyeds/actions/47
Issue 3602 Resolution - The absence of an assertion should not mean that the behavior is "explicitly prohibited".

Index: ws-policy-framework.xml
===================================================================
RCS file: /sources/public/2006/ws/policy/ws-policy-framework.xml,v
retrieving revision 1.62
retrieving revision 1.63
diff -u -d -r1.62 -r1.63
--- ws-policy-framework.xml	4 Oct 2006 22:20:33 -0000	1.62
+++ ws-policy-framework.xml	7 Oct 2006 21:19:36 -0000	1.63
@@ -415,10 +415,11 @@
 	   <termdef id="policy_alternative_vocabulary" term="policy alternative vocabulary">A <term>policy alternative vocabulary</term> is the set of
 	    all <termref def='policy_assertion_type'>policy assertion
 	    types</termref> within the <termref def='policy_alternative'>policy
-	    alternative</termref></termdef>.   An assertion whose type
-	    is part of the policy's vocabulary but is not included in
-	    an alternative is explicitly prohibited by the
-	    alternative.</p>
+	    alternative</termref></termdef>.
+	    When an assertion whose type is part of the policy's vocabulary is not included
+	    in a policy alternative, the policy alternative without the assertion type
+	    indicates that the assertion will not be applied in the context of the attached
+	    policy subject. </p>
 
 	    <p>Assertions within an alternative are not ordered, and
 	    thus aspects such as the order in which behaviors
@@ -2000,6 +2001,13 @@
                             <loc href="http://www.w3.org/2005/06/tracker/wspolicyeds/actions/10">10</loc> Recast text at the beg of section to describe what's upcoming in the subsections.
                         </td>
                     </tr>
+                    <tr>
+                        <td>20061007</td>
+                        <td>TIB</td>
+                        <td>Completed action item:
+                            <loc href="http://www.w3.org/2005/06/tracker/wspolicyeds/actions/47">47</loc> Issue 3602 Resolution - The absence of an assertion should not mean that the behavior is "explicitly prohibited".
+                        </td>
+                    </tr>
                 </tbody>
             </table>
         </inform-div1>

Index: ws-policy-framework.html
===================================================================
RCS file: /sources/public/2006/ws/policy/ws-policy-framework.html,v
retrieving revision 1.46
retrieving revision 1.47
diff -u -d -r1.46 -r1.47
--- ws-policy-framework.html	4 Oct 2006 22:20:35 -0000	1.46
+++ ws-policy-framework.html	7 Oct 2006 21:19:36 -0000	1.47
@@ -1,4 +1,4 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN""http://www.w3.org/TR/html4/loose.dtd">
 <html lang="en-US"><head><META http-equiv="Content-Type" content="text/html; charset=utf-8"><title>Web Services Policy 1.5 - Framework</title><style type="text/css">
 code           { font-family: monospace; }
 
@@ -47,7 +47,7 @@
 div.exampleWrapper { margin: 4px }
 div.exampleHeader { font-weight: bold;
                     margin: 4px}
-</style><link type="text/css" rel="stylesheet" href="http://www.w3.org/StyleSheets/TR/base.css"><link href="#contents" rel="contents"></head><body>
+</style><link rel="stylesheet" type="text/css" href="http://www.w3.org/StyleSheets/TR/base.css"><link rel="contents" href="#contents"></head><body>
     <div class="head">
 <h1>Web Services Policy 1.5 - Framework</h1>
 <h2>Editors' copy $Date$ @@ @@@@ @@@@</h2><dl><dt>This version:</dt><dd>
@@ -73,7 +73,7 @@
         no official standing.</strong></p><p></p></div>
     <hr><div class="toc">
 <h2><a name="contents">Table of Contents</a></h2><p class="toc">1. <a href="#tocRange">Introduction</a><br>&nbsp;&nbsp;&nbsp;&nbsp;1.1 <a href="#Example">Example</a><br>2. <a href="#Notation_Terminilogy">Notations and Terminology</a><br>&nbsp;&nbsp;&nbsp;&nbsp;2.1 <a href="#Notational_Conventions">Notational Conventions</a><br>&nbsp;&nbsp;&nbsp;&nbsp;2.2 <a href="#Extensibility">Extensibility</a><br>&nbsp;&nbsp;&nbsp;&nbsp;2.3 <a href="#XML_Namespaces">XML Namespaces</a><br>&nbsp;&nbsp;&nbsp;&nbsp;2.4 <a href="#Terminology">Terminology</a><br>3. <a href="#Policy_Model">Policy Model</a><br>&nbsp;&nbsp;&nbsp;&nbsp;3.1 <a href="#rPolicy_Assertion">Policy Assertion</a><br>&nbsp;&nbsp;&nbsp;&nbsp;3.2 <a href="#rPolicy_Alternative">Policy Alternative</a><br>&nbsp;&nbsp;&nbsp;&nbsp;3.3 <a href="#rPolicy">Policy</a><br>&nbsp;&nbsp;&nbsp;&nbsp;3.4 <a href="#Web_services">Policies of Entities in a Web Services Based System</a><br>4. <a href="#rPolicy_Expression">Policy Expression</a><br>&nbsp;&nbsp;&nbsp;&nbsp;4.1 < href="#Normal_Form_Policy_Expression">Normal Form Policy Expression</a><br>&nbsp;&nbsp;&nbsp;&nbsp;4.2 <a href="#Policy_Identification">Policy Identification</a><br>&nbsp;&nbsp;&nbsp;&nbsp;4.3 <a href="#Compact_Policy_Expression">Compact Policy Expression</a><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;4.3.1 <a href="#Optional_Policy_Assertions">Optional Policy Assertions</a><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;4.3.2 <a href="#Policy_Assertion_Nesting">Policy Assertion Nesting</a><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;4.3.3 <a href="#Policy_Operators">Policy Operators</a><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;4.3.4 <a href="#Policy_References">Policy References</a><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;4.3.5 <a href="#Policy_Inclusion">Policy Inclusion</a><br>&nbsp;&nbsp;&nbsp;&nbsp;4.4 <a href="#Policy_Intersection">Policy Intersection</a><br>5. <a href="#Security_Considerations">Security Considerations</a><br>&nbsp;&nbsp;&nbsp;&nbsp;5.1 <a href"#information-disclosure-threats">Information Disclosure Threats</a><br>&nbsp;&nbsp;&nbsp;&nbsp;5.2 <a href="#spoofing-and-tampering-threats">Spoofing and Tampering Threats</a><br>&nbsp;&nbsp;&nbsp;&nbsp;5.3 <a href="#downgrade-threats">Downgrade Threats</a><br>&nbsp;&nbsp;&nbsp;&nbsp;5.4 <a href="#repudiation-threats">Repudiation Threats</a><br>&nbsp;&nbsp;&nbsp;&nbsp;5.5 <a href="#denial-of-service-threats">Denial of Service Threats</a><br>&nbsp;&nbsp;&nbsp;&nbsp;5.6 <a href="#general-xml-considerations">General XML Considerations</a><br>6. <a href="#Conformance">Conformance</a><br></p>
-<h3><a id="appendix" name="appendix">Appendices</a></h3><p class="toc">A. <a href="#References">References</a><br>&nbsp;&nbsp;&nbsp;&nbsp;A.1 <a href="#Normative-References">Normative References</a><br>&nbsp;&nbsp;&nbsp;&nbsp;A.2 <a href="#Informative-References">Other References</a><br>B. <a href="#acknowledgments">Acknowledgements</a> (Non-Normative)<br>C. <a href="#change-description">Changes in this Version of the Document</a> (Non-Normative)<br>D. <a href="#change-log">Web Services Policy 1.5 - Framework Change Log</a> (Non-Normative)<br></p></div><hr><div class="body">
+<h3><a name="appendix" id="appendix">Appendices</a></h3><p class="toc">A. <a href="#References">References</a><br>&nbsp;&nbsp;&nbsp;&nbsp;A.1 <a href="#Normative-References">Normative References</a><br>&nbsp;&nbsp;&nbsp;&nbsp;A.2 <a href="#Informative-References">Other References</a><br>B. <a href="#acknowledgments">Acknowledgements</a> (Non-Normative)<br>C. <a href="#change-description">Changes in this Version of the Document</a> (Non-Normative)<br>D. <a href="#change-log">Web Services Policy 1.5 - Framework Change Log</a> (Non-Normative)<br></p></div><hr><div class="body">
         <div class="div1">
             
 <h2><a name="tocRange"></a>1. Introduction</h2>
@@ -83,13 +83,13 @@
             entities in a Web services-based system.
             </p>
 
-	    <p>[<a title="policy" name="policy">Definition</a>: A <b>policy</b> is a collection of 
+	    <p>[<a name="policy" title="policy">Definition</a>: A <b>policy</b> is a collection of 
 	    <a title="policy alternative" href="#policy_alternative">policy alternatives</a>, ]
-	    where [<a title="policy alternative" name="policy_alternative">Definition</a>: a <b>policy alternative</b> 
+	    where [<a name="policy_alternative" title="policy alternative">Definition</a>: a <b>policy alternative</b> 
 	    is a collection of <a title="policy assertion" href="#policy_assertion">policy assertions</a>.]
-		[<a title="policy assertion" name="policy_assertion">Definition</a>: A <b>policy assertion</b> 
+		[<a name="policy_assertion" title="policy assertion">Definition</a>: A <b>policy assertion</b> 
 		represents an individual requirement, capability, or other property of a behavior.]
-	    [<a title="policy expression" name="policy_expression">Definition</a>: A <b>policy expression</b> 
+	    [<a name="policy_expression" title="policy expression">Definition</a>: A <b>policy expression</b> 
 		is an XML Infoset representation of a <a title="policy" href="#policy">policy</a>, 
 		either in a normal form or in an equivalent compact form.] Some policy assertions
 	    specify traditional requirements and capabilities that
@@ -103,12 +103,12 @@
 
 <p>Web Services Policy 1.5 - Framework does not specify policy discovery or 
 	    <a title="policy attachment" href="#policy_attachment">policy attachment</a>.
-	    [<a title="policy attachment" name="policy_attachment">Definition</a>: A 
+	    [<a name="policy_attachment" title="policy attachment">Definition</a>: A 
 	    <b>policy attachment</b> is a mechanism for associating 
 	    <a title="policy" href="#policy">policy</a> with one or more <a title="policy scope" href="#policy_scope">policy scopes</a>.]
-				[<a title="policy scope" name="policy_scope">Definition</a>: A <b>policy scope</b> is a collection of 
+				[<a name="policy_scope" title="policy scope">Definition</a>: A <b>policy scope</b> is a collection of 
 	    <a title="policy subject" href="#policy_subject">policy subjects</a> to which a policy may apply.]
-				[<a title="policy subject" name="policy_subject">Definition</a>: A <b>policy subject</b> is an entity 
+				[<a name="policy_subject" title="policy subject">Definition</a>: A <b>policy subject</b> is an entity 
 	    (e.g., an endpoint, message, resource, interaction) with which a 
 	    <a title="policy" href="#policy">policy</a> can be associated. ]
 
@@ -128,7 +128,7 @@
                 assertions defined in WS-SecurityPolicy [<cite><a href="#WS-SecurityPolicy">WS-SecurityPolicy</a></cite>]:</p>
             
             <div class="exampleOuter">
-                <p class="exampleHead" style="text-align: left"><a name="ex-wsp-use-security-assertations"></a><i><span>Example 1-1. </span>Use of Web Services Policy with security policy assertions.</i></p>
+                <p style="text-align: left" class="exampleHead"><a name="ex-wsp-use-security-assertations"></a><i><span>Example 1-1. </span>Use of Web Services Policy with security policy assertions.</i></p>
                 <div class="exampleInner"><pre>
 (01) &lt;wsp:Policy
 &nbsp; &nbsp; &nbsp; &nbsp; xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"
@@ -357,6 +357,18 @@
    
    
       <dt class="label">
+         <a href="#policy_alternative_vocabulary">policy alternative vocabulary</a>
+      </dt>
+      <dd>
+         <p>A <b>policy alternative vocabulary</b> is the set of
+	    all <a title="policy assertion type" href="#policy_assertion_type">policy assertion
+	    types</a> within the <a title="policy alternative" href="#policy_alternative">policy
+	    alternative</a>
+         </p>
+      </dd>
+   
+   
+      <dt class="label">
          <a href="#policy_assertion">policy assertion</a>
       </dt>
       <dd>
@@ -456,7 +468,7 @@
 	    type</a> is identified only by the XML Infoset <strong>[namespace name]</strong> and <strong>[local name]</strong> properties (that
 	    is, the qualified name or QName) of the root Element
 	    Information Item representing the assertion.  
-	    [<a title="policy assertion type" name="policy_assertion_type">Definition</a>: A <b>policy assertion type</b> 
+	    [<a name="policy_assertion_type" title="policy assertion type">Definition</a>: A <b>policy assertion type</b> 
 	    represents a class of <a title="policy assertion" href="#policy_assertion">policy assertions</a> and implies a 
 	    schema for the assertion and assertion-specific semantics.]
 	    Assertions of
@@ -476,7 +488,7 @@
 	        property. Such properties are <a title="policy assertion parameter" href="#policy_assertion_parameter">policy assertion parameters</a> 
 	        and <span class="rfc2119">MAY</span> be used to  
 	        parameterize the behavior indicated by the assertion.  
-	    [<a title="policy assertion parameter" name="policy_assertion_parameter">Definition</a>: A <b>policy assertion parameter</b> 
+	    [<a name="policy_assertion_parameter" title="policy assertion parameter">Definition</a>: A <b>policy assertion parameter</b> 
 	    qualifies the behavior indicated by a <a title="policy assertion" href="#policy_assertion">policy assertion</a>.]
 	    For example, an
 	    assertion identifying support for a specific reliable
@@ -505,15 +517,16 @@
 	    indicates behaviors implied by those, and only those
 	    assertions. </p>
 
-	    <p>	    [<a title="policy vocabulary" name="policy_vocabulary">Definition</a>: A <b>policy vocabulary</b> is the set of all 
+	    <p>	    [<a name="policy_vocabulary" title="policy vocabulary">Definition</a>: A <b>policy vocabulary</b> is the set of all 
 	    <a title="policy assertion type" href="#policy_assertion_type">policy assertion types</a> used in a policy.]
-	   [<a title="policy alternative vocabulary" name="policy_alternative_vocabulary">Definition</a>: A <b>policy alternative vocabulary</b> is the set of
+	   [<a name="policy_alternative_vocabulary" title="policy alternative vocabulary">Definition</a>: A <b>policy alternative vocabulary</b> is the set of
 	    all <a title="policy assertion type" href="#policy_assertion_type">policy assertion
 	    types</a> within the <a title="policy alternative" href="#policy_alternative">policy
-	    alternative</a>].   An assertion whose type
-	    is part of the policy's vocabulary but is not included in
-	    an alternative is explicitly prohibited by the
-	    alternative.</p>
+	    alternative</a>].
+	    When an assertion whose type is part of the policy's vocabulary is not included
+	    in a policy alternative, the policy alternative without the assertion type
+	    indicates that the assertion will not be applied in the context of the attached
+	    policy subject. </p>
 
 	    <p>Assertions within an alternative are not ordered, and
 	    thus aspects such as the order in which behaviors
@@ -863,7 +876,7 @@
 <h4><a name="Policy_Assertion_Nesting"></a>4.3.2 Policy Assertion Nesting</h4>
 
 <p>Any <a title="policy assertion" href="#policy_assertion">policy assertion</a>
-<span class="rfc2119">MAY</span> contain a <a title="policy expression" href="#policy_expression">policy expression</a>.  [<a title="nested policy expression" name="nested_policy_expression">Definition</a>: A <b>nested policy expression</b> is a <a title="policy expression" href="#policy_expression">policy expression</a> that is an Element Information Item in the <strong>[children]</strong> property of a <a title="policy assertion" href="#policy_assertion">policy assertion</a>.]  The schema
+<span class="rfc2119">MAY</span> contain a <a title="policy expression" href="#policy_expression">policy expression</a>.  [<a name="nested_policy_expression" title="nested policy expression">Definition</a>: A <b>nested policy expression</b> is a <a title="policy expression" href="#policy_expression">policy expression</a> that is an Element Information Item in the <strong>[children]</strong> property of a <a title="policy assertion" href="#policy_assertion">policy assertion</a>.]  The schema
 outline for a <a title="nested policy expression" href="#nested_policy_expression">nested policy expression</a> is:</p>
 
 <div class="exampleInner"><pre>&lt;<em>Assertion</em> &hellip;&gt;
@@ -1474,7 +1487,7 @@
             policy alternatives, number of assertions in an alternative, depth of nested policy
             expressions, etc.</p>
         <div class="exampleOuter">
-            <p class="exampleHead" style="text-align: left"><a name="ex-chained-policy-reference-elements"></a><i><span>Example 5-1. </span>Chained Policy Reference Elements</i></p>
+            <p style="text-align: left" class="exampleHead"><a name="ex-chained-policy-reference-elements"></a><i><span>Example 5-1. </span>Chained Policy Reference Elements</i></p>
             <div class="exampleInner"><pre>&lt;Policy wsu:Id="p1"&gt;
                 &lt;PolicyReference URI="#p2"/ &gt;
                 &lt;PolicyReference URI="#p2"/&gt;
@@ -2105,6 +2118,13 @@
                             <a href="http://www.w3.org/2005/06/tracker/wspolicyeds/actions/10">10</a> Recast text at the beg of section to describe what's upcoming in the subsections.
                         </td>
                     </tr>
+                    <tr>
+                        <td rowspan="1" colspan="1">20061007</td>
+                        <td rowspan="1" colspan="1">TIB</td>
+                        <td rowspan="1" colspan="1">Completed action item:
+                            <a href="http://www.w3.org/2005/06/tracker/wspolicyeds/actions/47">47</a> Issue 3602 Resolution - The absence of an assertion should not mean that the behavior is "explicitly prohibited".
+                        </td>
+                    </tr>
                 </tbody>
             </table><br>
         </div>

Received on Saturday, 7 October 2006 21:19:46 UTC