OASIS eXtensible Access Control Markup Language (XACML) TC

 View Only

Re: [xacml] Attribute and AttributeDesignator for XACML...

  • 1.  Re: [xacml] Attribute and AttributeDesignator for XACML...

    Posted 04-30-2002 11:44
    On 29 April, Carlisle Adams writes: [xacml] Attribute and AttributeDesignator for XACML... > This includes both > AttributeDesignator and Attribute. The idea is that these would be almost > identical to their counterparts in SAML, but would include three pieces of > (optional) extra information: Issuer; IssueInstant; and Holder. SAML includes "Holder" (Subject) when the saml:Attribute is in a saml:AttributeStatement. SAML includes "Issuer" and "IssueInstant" when the AttributeStatement is in a saml:Assertion. Are we redefining these to make them more compact (i.e. we don't need MajorVersion, MinorVersion, AssertionID, Conditions, Advice)? Or is the main motivation to allow for our own definition of "Subject" rather than using SAML's string plus NameQualifier and Format attributes? Or for some other reason? Anne -- Anne H. Anderson Email: Anne.Anderson@Sun.COM Sun Microsystems Laboratories 1 Network Drive,UBUR02-311 Tel: 781/442-0928 Burlington, MA 01803-0902 USA Fax: 781/442-1692