RE: Policy Server

Tue, 05 Dec 2000 10:20:24 -0800 

This doc:
http://www.ietf.org/internet-drafts/draft-ietf-policy-terminology-01.txt
defines a policy server as a "marketing term" to be replaced by the term
"policy decision point" (PDP) where a PDP is an entity that makes policy
decisions for itself or for other elments that request policy decisions to
be made.

My definition of a policy server combines several elements that are
referenced in the above document and is as follows:

1. an entity that allows security policies to be defined
2. an entity that allows security policies to be retrieved
3. an entity that allows groups/roles/permissions to be defined
4. an entity that enforces defined security policies
5. an entity that interprets security policies inter-domain and inter-realm
   (where domain is defined as a set of hosts with using the same security
policy and
    realm is defined as a set of resources grouped together under the same
security policy)

This definition may not be all inclusive but it is how I understand what a
policy server does.  I have looked at the security services API and I just
wanted to verify that what is there is *not* intended to be an interface for
the above.  However, if I have misinterpreted the power of this service,
please let me know.  I also wanted clarification before I embarked on an
unneeded journey.


Thank you for your response.

Tracy.

>-----Original Message-----
>From: Jon Stevens [mailto:[EMAIL PROTECTED]]
>Sent: Monday, December 04, 2000 2:28 PM
>To: Turbine
>Subject: Re: Policy Server
>
>
>on 12/4/2000 10:44 AM, "Tracy Adewunmi" <[EMAIL PROTECTED]> wrote:
>
>> Hello,
>> 
>> I am relatively new to Turbine and we are working with the 
>security service
>> provided by Turbine.  My question is this:  Do the classes 
>in the security
>> service layer make up a policy server or does one use these 
>classes in
>> conjuction with JAAS, JCE and the other java security APIs to build a
>> Turbine based policy server?
>> 
>> Thanks.
>> 
>> Tracy.
>
>I guess that I'm a bit confused at what you want. Could you 
>please define
>what you think a "policy server" is?
>
>-jon
>
>-- 
>Honk if you love peace and quiet.
>
>
>
>
>------------------------------------------------------------
>To subscribe:        [EMAIL PROTECTED]
>To unsubscribe:      [EMAIL PROTECTED]
>Search: <http://www.mail-archive.com/turbine%40list.working-dogs.com/>
>Problems?:           [EMAIL PROTECTED]
>


------------------------------------------------------------
To subscribe:        [EMAIL PROTECTED]
To unsubscribe:      [EMAIL PROTECTED]
Search: <http://www.mail-archive.com/turbine%40list.working-dogs.com/>
Problems?:           [EMAIL PROTECTED]

Reply via email to