MHonArc v2.5.2 -->

















xacml message






[Date Prev]
 | [Thread Prev]
 | [Thread Next]
 | [Date Next]

--

[Date Index]
 | [Thread Index]
 | [Elist Home]








Subject: RE: [xacml] Proposed semantics for operations involving INDETERMI	NATE




From: bill parducci <bill@parducci.net>
To: xacml <xacml@lists.oasis-open.org>
Date: Tue, 23 Jul 2002 13:26:30 -0700






> The client shouldn't know what the operational errors of the PDP actually
> are. It it does, it breaks encapsulation of the PDP, and causes the
> clients of a PDP to worry about a lot more than Access Decisions, but also
> problems with the PDP.

indeed! we break encapsulation at this level and we abandon all hope of
interoperability (we teeter perilously close to the abyss as it is...)

> I personally would like to restrict the policy to only evaluate the
> evidence in the Context, and therefore all data is considered
> available.
> Then there is no question, and no Errors.

agreed.

b









References:

RE: [xacml] Proposed semantics for operations involving INDETERMI NATE
From: Polar Humenn <polar@syr.edu>






[Date Prev]
 | [Thread Prev]
 | [Thread Next]
 | [Date Next]

--

[Date Index]
 | [Thread Index]
 | [Elist Home]


  









Powered by eList eXpress LLC