File list for ZIP archive http://xml.coverpages.org/XACMLv20-Interop-RSA2008-28011.zip See source: http://www.oasis-open.org/committees/download.php/28011/xacml-2.0-core-RSA2008-interop-draft-12-03.zip Archive: XACMLv20-Interop-RSA2008-28011.zip Length Method Size Ratio Date Time CRC-32 Name -------- ------ ------- ----- ---- ---- ------ ---- 4052 Defl:N 413 90% 04-16-08 01:38 54cbe54d 080401-test-case-list.txt 4747 Defl:N 796 83% 04-01-08 21:41 a6ba5060 XacmlPolicySet-01-top-level.xml 2745 Defl:N 894 67% 04-05-08 23:57 fe405648 XacmlPolicySet-02a-CDA.xml 1682 Defl:N 593 65% 04-01-08 21:42 0c1232bc XacmlPolicySet-02b-N.xml 6113 Defl:N 1011 84% 04-05-08 23:56 bdbaf2c8 XacmlPolicySet-02c-N-PermCollections.xml 3456 Defl:N 939 73% 04-01-08 21:52 658f5b3e XacmlPolicySet-02d-prog-note.xml 3043 Defl:N 1004 67% 04-01-08 21:56 4d2c3f49 XacmlPolicySet-02e-MA.xml 4895 Defl:N 1044 79% 04-02-08 00:49 493d5df7 XacmlPolicySet-02f-emergency.xml 807 Defl:N 397 51% 04-01-08 21:43 03a103ea XacmlPolicySet-03-N-RPS-med-rec-vrole.xml 8655 Defl:N 1017 88% 04-01-08 21:44 2e342b30 XacmlPolicySet-04-N-PPS-PRD-004.xml 4111 Defl:N 753 82% 04-02-08 00:56 ba1313c5 XacmlRequest-01-01.xml 3967 Defl:N 767 81% 04-02-08 01:07 381e0e0b XacmlRequest-01-02.xml 3966 Defl:N 769 81% 04-02-08 01:08 122b762d XacmlRequest-01-03.xml 3750 Defl:N 749 80% 04-01-08 22:11 ab819bda XacmlRequest-01-04.xml 2867 Defl:N 708 75% 04-16-08 01:32 efef0960 XacmlRequest-02-01.xml 4120 Defl:N 757 82% 04-16-08 01:02 21b83f8a XacmlRequest-02-02.xml 4116 Defl:N 759 82% 04-02-08 01:08 0b7726c2 XacmlRequest-02-03.xml 4177 Defl:N 777 81% 04-16-08 01:37 064870bb XacmlRequest-02-04.xml 4394 Defl:N 796 82% 04-16-08 01:32 6cb6c3bc XacmlRequest-03-01.xml 4393 Defl:N 795 82% 04-02-08 01:09 573374d4 XacmlRequest-03-02.xml 4396 Defl:N 790 82% 04-02-08 01:09 2bbcdc14 XacmlRequest-03-03.xml 3546 Defl:N 724 80% 04-06-08 02:24 05db0f36 XacmlRequest-04-01.xml 3129 Defl:N 725 77% 04-05-08 23:59 1972a898 XacmlRequest-04-02.xml 3782 Defl:N 766 80% 04-05-08 15:29 3177354e XacmlRequest-04-03.xml 3745 Defl:N 774 79% 04-05-08 15:43 774aebac XacmlRequest-04-04.xml 4141 Defl:N 766 82% 04-02-08 01:06 761632ca XacmlRequest-05-01.xml 4137 Defl:N 775 81% 04-02-08 01:10 79b5cd45 XacmlRequest-05-02.xml 482304 Defl:N 110096 77% 04-17-08 12:00 aa5661e3 xacml-2.0-core-RSA2008-interop-draft-12-03.doc -------- ------- --- ------- 589236 131154 78% 28 files This document specifies scenarios that may be used to demonstrate interoperability of multiple PDP, PEP, and PIP modules that were implemented based on the XACML 2.0 Core Specification. It covers Healthcare Fine Grain Authorization Use Cases, Coarse Grain Authorization Decision Request/Response, and Policy Exchange. The XACML 2.0 Specification defines an XML-oriented policy language, which is intended to be used at a Policy Decision Point (PDP) to represent the set of policies that the PDP will use to evaluate decision requests received from a Policy Enforcement Point (PEP). Policies contain expressions that define dynamic access relationship conditions between subjects and resources based on attributes associated with the subject(s) making an access request, attributes associated with the resource(s) to which access is being requested, attributes associated with the action intended to be applied to the resource, and attributes of the operational environment (such as time of day). The PDP determines the set of policies that are applicable to the request, evaluates the applicable policies by collecting attribute information from the request and using it where appropriate in the policy expressions and returns a decision, which may be one of: permit, deny, indeterminate, or not applicable... The Interop demonstrates how it is possible to use XACML to separate access control logic from the business logic provided by an application. The application does not make access control decisions itself; rather it exports its resource model to the policy writers. The access control policy is then defined with XACML based on the vocabulary that the application provides. The Interop demonstrates how an HL7-based access control vocabulary model can be implemented using XACML. However, a completely different access control model would be possible. For instance if the same medical application is deployed in a different regulatory environment, the access control model can be changed in the XACML policies, without modifications to the application itself. This benefits the application vendor as the same application can be used by a wider audience, and the customers who get access to a wider selection of applications and better flexibility..." Note from submitter: "The zip file contains the Interop document which describes the messages and policies used in the RSA Conference 2008 USA XACML 2.0 Interop conducted at the RSA Conference April 7-10, 2008. The zip file contains the document plus the XML files for the policies used at the Interop, plus a collection of test messages that were used prior to the Interop. The policies and messages are copied directly from the document to the XML files with the exception of some additional test messages that simple derivations from the test messages contained in the (prose) doc."