> Also, what identity should be used for the invocation - the caller's, > the container's, or the run-as identity (if defined)? >
AFAIK is exactly this not yet standardized. There is no 'class instance identity' in distributed systems. May be it should be the NIC-MAC address + memory location in hex ? OK, just kidding ... bax
