- From: Prasad Yendluri via cvs-syncmail <cvsmail@w3.org>
- Date: Mon, 16 Oct 2006 19:21:58 +0000
- To: public-ws-policy-eds@w3.org
Update of /sources/public/2006/ws/policy
In directory hutz:/tmp/cvs-serv17659
Modified Files:
ws-policy-framework-diff20060927.html
Log Message:
Pick up latest diffs
Index: ws-policy-framework-diff20060927.html
===================================================================
RCS file: /sources/public/2006/ws/policy/ws-policy-framework-diff20060927.html,v
retrieving revision 1.4
retrieving revision 1.5
diff -u -d -r1.4 -r1.5
--- ws-policy-framework-diff20060927.html 12 Oct 2006 23:54:34 -0000 1.4
+++ ws-policy-framework-diff20060927.html 16 Oct 2006 19:21:56 -0000 1.5
@@ -173,7 +173,7 @@
<div class="diff-add"><p class="diff-add"><span class="diff-add">Lines</span><span class="diff-del">required </span><span class="diff-chg">(08-11) </span><span class="diff-add">represents</span><span class="diff-del">performing
cryptographic </span><span class="diff-chg">a second policy alternative </span><span class="diff-add">for</span><span class="diff-del">asymmetric
- key-based </span><span class="diff-add">encrypting a message</span><span class="diff-del">security </span><span class="diff-add">body. </span><span class="diff-del">tokens.</span></p></div>
+ key-based </span><span class="diff-chg">encrypting </span><span class="diff-add">a message body. </span><span class="diff-del">tokens.</span></p></div>
<p>Lines <span class="diff-chg">(02-13) illustrates </span>the <code class="elt">ExactlyOne</code> policy
operator. Policy operators group policy assertions into
policy alternatives. A valid interpretation of the policy
@@ -330,7 +330,7 @@
<li>
<p>Modifications to the pattern facet of a type definition for which the
value-space of the previous definition remains valid or for
- which the value-space of the <span class="diff-add">vast majority</span><span class="diff-del">preponderance </span>of
+ which the value-space of the <span class="diff-chg">vast </span><span class="diff-add">majority </span>of
<span class="diff-chg">instances </span>would remain valid.</p></li>
<li>
<p>Modifications to the cardinality of elements
@@ -551,9 +551,9 @@
all <a title="policy assertion type" href="#policy_assertion_type">policy assertion
types</a> <span class="diff-add">within</span><span class="diff-del">used in </span><span class="diff-chg">the </span><a title="policy alternative" href="#policy_alternative"><span class="diff-add">policy</span><span class="diff-del">policy.
</span><span class="diff-add">alternative</span></a><span class="diff-add">.</span>]</span>
- <span class="diff-add">When</span><span class="diff-del">An </span><span class="diff-add">an </span>assertion whose type is part of the policy's vocabulary <span class="diff-del">but </span>is not included <span class="diff-del">in
- </span><span class="diff-add">in a policy alternative, the</span><span class="diff-del">an </span><span class="diff-add">policy </span>alternative <span class="diff-chg">without the assertion </span><span class="diff-add">type
- indicates that</span><span class="diff-del">by </span>the <span class="diff-add">assertion will not be applied in the context of the attached
+ <span class="diff-add">When an</span><span class="diff-del">An </span>assertion whose type is part of the policy's vocabulary <span class="diff-del">but </span>is not included <span class="diff-del">in
+ </span><span class="diff-add">in a policy alternative, the policy</span><span class="diff-del">an </span>alternative <span class="diff-chg">without the assertion </span><span class="diff-add">type
+ indicates</span><span class="diff-del">by </span><span class="diff-add">that the assertion will not be applied in the context of </span>the <span class="diff-add">attached
policy subject. See the example in Section </span><span class="diff-add"><a href="#Optional_Policy_Assertions"><b>4.3.1 Optional Policy Assertions</b></a></span><span class="diff-del">alternative.</span></p>
<p>Assertions within an alternative are not ordered, and
@@ -597,11 +597,11 @@
<h3><a name="Web_services"></a>3.4 <span class="diff-add">Policies of Entities in a </span>Web <span class="diff-add">Services Based System</span><span class="diff-del">services</span></h3>
<p>Applied in the Web services <span class="diff-add">based system,</span><span class="diff-del">model, </span><a title="policy" href="#policy">policy</a> is used to convey conditions
- on an interaction between <span class="diff-add">entities (requester application,
- provider service,</span><span class="diff-del">a </span>Web <span class="diff-chg">infrastructure component, </span><span class="diff-add">etc). </span><span class="diff-add">[<a title="policy subject" name="policy_subject">Definition</a>: <span class="diff-add">A </span><b><span class="diff-add">policy subject</span></b> <span class="diff-add">is an entity
- (e.g., an endpoint,</span><span class="diff-del">and </span><span class="diff-add">message, resource, interaction) with which </span>a
+ on an interaction between <span class="diff-chg">entities </span><span class="diff-add">(requester application,
+ provider service, </span>Web <span class="diff-chg">infrastructure component, </span><span class="diff-add">etc). </span><span class="diff-add">[<a title="policy subject" name="policy_subject">Definition</a>: <span class="diff-add">A </span><b><span class="diff-add">policy subject</span></b> <span class="diff-add">is an entity
+ (e.g., an</span><span class="diff-del">and </span><span class="diff-add">endpoint, message, resource, interaction) with which </span>a
<a title="policy" href="#policy"><span class="diff-add">policy</span></a> <span class="diff-add">can be associated. </span>]</span> <span class="diff-add">Any entity in a
- </span>Web <span class="diff-chg">services </span><span class="diff-add">based system may</span><span class="diff-del">provider. </span><span class="diff-add">expose a policy to convey conditions under
+ </span>Web <span class="diff-chg">services </span><span class="diff-add">based system</span><span class="diff-del">provider. </span><span class="diff-add">may expose a policy to convey conditions under
which it functions. </span>Satisfying assertions in the policy usually
<span class="diff-del">results </span><span class="diff-add">results
</span>in behavior that reflects these
@@ -616,8 +616,8 @@
alternative configuration.</p>
<p>A <a title="policy assertion" href="#policy_assertion">policy
- assertion</a> is supported by <span class="diff-add">an entity in the</span><span class="diff-del">a
- requester </span><span class="diff-add">web services
+ assertion</a> is supported by <span class="diff-add">an entity in</span><span class="diff-del">a
+ requester </span><span class="diff-add">the web services
based system </span>if and only if the <span class="diff-chg">entity </span>satisfies the
<span class="diff-del">requirement </span><span class="diff-add">requirement
</span>(or accommodates the capability) corresponding to the assertion.
@@ -647,7 +647,7 @@
<div class="div1">
<h2><a name="rPolicy_Expression"></a>4. Policy Expression</h2>
- <p><span class="diff-add">This section</span><span class="diff-del">To </span><span class="diff-add">describes how to </span>convey policy in an interoperable form,
+ <p><span class="diff-chg">This </span><span class="diff-add">section describes how to </span>convey policy in an interoperable form,
<span class="diff-add">using the XML Infoset representation of </span>a <span class="diff-add">policy. </span><span class="diff-add">[<a title="policy expression" name="policy_expression">Definition</a>: <span class="diff-add">A </span><b>policy
<span class="diff-del">expression </span><span class="diff-add">expression</span></b>
is an XML Infoset representation of a <a title="policy" href="#policy"><span class="diff-add">policy</span></a><span class="diff-add">,
@@ -714,8 +714,8 @@
<dt class="label"><code class="attr">/wsp:Policy/@{any}</code> </dt>
<dd><p>Additional attributes <span class="rfc2119">MAY</span> be specified but
<span class="rfc2119">MUST NOT</span> contradict the semantics of the
- <span class="diff-add"><em> owner <span class="diff-add">element</span></em></span><span class="diff-add">;
-</span><span class="diff-del">element; </span>if an attribute is not recognized, it
+ <span class="diff-add"><em> owner
+<span class="diff-del">element; </span><span class="diff-add">element</span></em></span><span class="diff-add">; </span>if an attribute is not recognized, it
<span class="rfc2119">SHOULD</span> be ignored.</p>
</dd>
@@ -749,8 +749,8 @@
(14) </wsp:Policy></span></pre></div>
<p>Lines <span class="diff-chg">(03-07) </span>and Lines <span class="diff-chg">(08-11) </span>express the two alternatives in the
-policy. If the first alternative is selected, <span class="diff-del">only </span>the <span class="diff-chg">message body </span><span class="diff-add">needs</span><span class="diff-del">RSA
-15 </span><span class="diff-chg">to </span><span class="diff-add">be signed</span><span class="diff-del">suite </span>[<a href="#WS-SecurityPolicy">[WS-SecurityPolicy]</a>] is supported;
+policy. If the first alternative is selected, <span class="diff-del">only </span>the <span class="diff-add">message body</span><span class="diff-del">Basic </span><span class="diff-chg">needs </span><span class="diff-add">to</span><span class="diff-del">RSA
+15 </span><span class="diff-chg">be signed </span>[<a href="#WS-SecurityPolicy">[WS-SecurityPolicy]</a>] is supported;
conversely, if the second alternative is selected, <span class="diff-del">only </span>the <span class="diff-chg">message </span><span class="diff-add">body</span><span class="diff-del">RSA
15 </span><span class="diff-chg">needs to be encrypted. </span></p>
</div>
@@ -924,7 +924,7 @@
<h4><a name="Policy_Assertion_Nesting"></a>4.3.2 Policy Assertion Nesting</h4>
<p>Any <a title="policy assertion" href="#policy_assertion">policy assertion</a>
-<span class="rfc2119">MAY</span> contain a <span class="diff-add"><a title="policy expression" href="#policy_expression"><span class="diff-add">policy expression</span></a></span><span class="diff-add">. </span><span class="diff-add">[<a title="nested policy expression" name="nested_policy_expression">Definition</a>: <span class="diff-add">A </span><b>nested <span class="diff-add">policy expression</span></b> <span class="diff-add">is a </span><a title="policy expression" href="#policy_expression">policy expression</a> <span class="diff-add">that is an Element Information Item in the </span><em><span class="diff-add">children</span></em> <span class="diff-add">property of a </span><a title="policy assertion" href="#policy_assertion"><span class="diff-add">policy</span><span class="diff-del">. </span><span class="diff-add">assertion</span></a><span class="diff-add">.</span>]</span> The schema
+<span class="rfc2119">MAY</span> contain a <span class="diff-add"><a title="policy expression" href="#policy_expression"><span class="diff-add">policy expression</span></a></span><span class="diff-add">. </span><span class="diff-add">[<a title="nested policy expression" name="nested_policy_expression">Definition</a>: <span class="diff-add">A </span><b>nested <span class="diff-add">policy expression</span></b> <span class="diff-add">is a </span><a title="policy expression" href="#policy_expression">policy expression</a> <span class="diff-add">that</span><span class="diff-del">. </span><span class="diff-add">is an Element Information Item in the </span><em><span class="diff-add">children</span></em> <span class="diff-add">property of a </span><a title="policy assertion" href="#policy_assertion"><span class="diff-add">policy assertion</span></a><span class="diff-add">.</span>]</span> The schema
outline for a <span class="diff-add"><a title="nested policy expression" href="#nested_policy_expression">nested policy expression</a></span> is:</p>
<div class="diff-chg"><div class="exampleInner"><pre class="diff-chg"><<em>Assertion</em> …>
@@ -948,7 +948,7 @@
<code><wsp:Policy/></code> Element Information Item in its <em>children</em> property; as explained in
Section <a href="#Policy_Operators"><b>4.3.3 Policy Operators</b></a>, this is equivalent to a
nested policy expression with a single alternative that has zero
-assertions. <span class="diff-chg">The </span><span class="diff-add">reason for requring</span><span class="diff-del">this </span><span class="diff-add">least an empty </span><span class="diff-add"><code><span class="diff-add"><wsp:Policy/></span></code></span>
+assertions. <span class="diff-chg">The reason </span><span class="diff-add">for requring least an empty </span><span class="diff-add"><code><span class="diff-add"><wsp:Policy/></span></code></span>
<span class="diff-add">Element above </span>is <span class="diff-chg">to ensure that </span>two assertions of the same type will <span class="diff-chg">always </span>be
compatible and <span class="diff-add">an </span>intersection <span class="diff-chg">would not </span><span class="diff-add">fail
</span>(see Section <a href="#Policy_Intersection"><b>4.4 Policy Intersection</b></a>).</p>
@@ -1077,7 +1077,7 @@
<p>The following rules are used to transform a compact policy expression into a normal form policy expression:</p>
<dl>
<dt class="label">Equivalence</dt>
-<dd><p><span class="diff-add">Use of </span><code class="elt">wsp:Policy</code> <span class="diff-add">as an operator within a policy</span><span class="diff-del">is </span><span class="diff-add">expression is
+<dd><p><span class="diff-add">Use of </span><code class="elt">wsp:Policy</code> <span class="diff-add">as an operator within a policy expression</span><span class="diff-del">is </span><span class="diff-add">is
</span>equivalent to <code class="elt">wsp:All</code> .</p>
</dd>
@@ -1394,6 +1394,7 @@
<!-- Policy P1 -->
(02) <wsp:ExactlyOne>
(03) <wsp:All> <!-- Alternative A1 -->
+
(04) <sp:SignedElements>
(05) <sp:XPath>/S:Envelope/S:Body</sp:XPath>
(06) </sp:SignedElements>
@@ -1821,11 +1822,11 @@
<p>A list of substantive changes since the Working Draft dated <span class="diff-chg">27 September, </span>2006
is below:</p>
<ul>
- <li><p><span class="diff-chg">Fleshed-up the </span><span class="diff-add">Conformance section.</span></p></li>
- <div class="diff-add"><li class="diff-add"><p><span class="diff-add">Enhanced Security Considerations section</span><span class="diff-del">for </span><span class="diff-add">(with material from </span>the <span class="diff-add">Primer).</span></p></li></div>
- <div class="diff-add"><li class="diff-add"><p><span class="diff-add">Clarified WS-Policy 1.5 Framework and Attachment XML Namespace URI</span><span class="diff-del">xml:id </span><span class="diff-add">versioning Policy.</span><span class="diff-del">attribute.</span></p></li></div>
- <li><p><span class="diff-add">Clarified the policy model for Web Services.</span></p></li>
- <div class="diff-add"><li class="diff-add"><p><span class="diff-add">Clarified that</span><span class="diff-del">Added </span>an <span class="diff-chg">Element (EII) </span><span class="diff-add">within a policy expression MUST be an assertion.</span><span class="diff-del">section.</span></p></li></div>
+ <li><p><span class="diff-chg">Enhanced Conformance </span><span class="diff-add">section.</span></p></li>
+ <div class="diff-add"><li class="diff-add"><p><span class="diff-add">Enhanced Security Considerations section.</span></p></li></div>
+ <div class="diff-add"><li class="diff-add"><p><span class="diff-add">Clarified WS-Policy 1.5 Framework and Attachment XML Namespace URI versioning</span><span class="diff-del">for </span><span class="diff-add">Policy.</span></p></li></div>
+ <div class="diff-add"><li class="diff-add"><p><span class="diff-add">Clarified </span>the <span class="diff-add">policy model for</span><span class="diff-del">xml:id </span><span class="diff-add">Web Services.</span><span class="diff-del">attribute.</span></p></li></div>
+ <li><p><span class="diff-add">Clarified that</span><span class="diff-del">Added </span>an <span class="diff-chg">Element (EII) </span><span class="diff-add">within a policy expression MUST be an assertion.</span><span class="diff-del">section.</span></p></li>
<li><p><span class="diff-chg">Clarified that policy </span><span class="diff-add">assertion parameters are opaque to framework processing.</span><span class="diff-del">IRI.</span></p></li>
<div class="diff-add"><li class="diff-add"><p><span class="diff-add">Added PolicyReference extensibility via {Any}</span></p></li></div>
<div class="diff-add"><li class="diff-add"><p><span class="diff-add">Clarified constraints on @xml:id type usage for Policy Identification.</span></p></li></div>
Received on Monday, 16 October 2006 19:22:14 UTC