Here is how I addressed the comments received on working draft 01. Hal's comments:
https://lists.oasis-open.org/archives/xacml/201312/msg00003.html I refactored the introduction as Hal suggested. Section 1.1 is a non-normative, high-level overview of what is contained in the profile along with a couple of diagrams in the spirit of what Hal provided and some of his phrasing. The discussion of alternative approaches and their failings is now in the non-normative Section 2. The few normative statements from the old introduction are now in the normative Section 3. Because Section 3 refers to the entity data-type I moved the entity data-type section ahead of quantified expressions in the profile to become the new Section 4. There are lots of red lines because of that, but there are no significant changes. Following Hal's endorsement I stuck with "domain". Sorry John! Erik's comments:
https://lists.oasis-open.org/archives/xacml/201311/msg00014.html The split up of the introduction deals with the mix of normative and non-normative content in the old introduction. On the "primitive" data-type issue I mostly dropped the qualification and added a clarification that the entity data-type is usable wherever XACML 3.0 specifies a primitive data-type is required. That deals with the incongruity of calling the entity data-type a primitive type. The consolidated XML Schema definitions in the appendix have been extracted to a separate file and there is now an explicit comment in Section 1.3 that the schema fragments still in the profile are non-normative. Mohammad's comments:
https://lists.oasis-open.org/archives/xacml/201310/msg00031.html I reworded the descriptions of the quantified expressions to remove any suggestion that there is an order in which the values in the domain are considered and added explicit statements of what the result is when the domain is empty. John's comments:
https://lists.oasis-open.org/archives/xacml/201310/msg00029.html I didn't change the attribute identifiers for the reasons I gave in the follow ups to John's message and because of Hal's recommendation to avoid links between profiles. The approved exports example may be a source of confusion depending on one's background knowledge. Does anyone think I need to work on that a bit more ? Did I miss anyone ? Regards, Steven On 11/06/2015 4:18 PM, Steven Legg wrote: /Submitter's message/ This is a revision of working draft 01 with changes tracked. There are no technical changes; all the changes are purely editorial. I will provide details in a separate email. -- Dr. Steven Legg *Document Name*: XACML v3.0 Related and Nested Entities Profile Version 1.0 <
https://www.oasis-open.org/apps/org/workgroup/xacml/document.php?document_id=55846 > ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- -- *Description* It is not unusual for access control policy to be dependent on attributes that are not naturally properties of the access subject or resource, but rather are properties of entities that are related to the access subject or resource. This profile defines the means to reference such attributes from within XACML policies for processing by a policy decision point. Download Latest Revision <
https://www.oasis-open.org/apps/org/workgroup/xacml/download.php/55846/latest/xacml-3.0-related-entities-v1.0-wd02.zip > Public Download Link <
https://www.oasis-open.org/committees/document.php?document_id=55846&wg_abbrev=xacml > ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- -- *Submitter*: Dr. Steven Legg *Group*: OASIS eXtensible Access Control Markup Language (XACML) TC *Folder*: Specifications and Working Drafts *Date submitted*: 2015-06-10 23:17:51